
---

# 🔁 **12. CI/CD & Docker**

---

## ⚙️ CI/CD Tools (Docker ready)

| 🔧 Tool            | ⚡ Integration                        |
| ------------------ | ------------------------------------ |
| **GitHub Actions** | workflows (`.yml`) with Docker steps |
| **GitLab CI**      | `.gitlab-ci.yml` → Docker executors  |
| **Jenkins**        | Docker plugin / shell scripts        |

---

## 🚀 Build → Push → Test (pipeline flow)

```yaml
jobs:
  docker-deploy:
    runs-on: ubuntu-latest
    steps:
      - uses: actions/checkout@v3

      - name: Login
        run: echo "${{ secrets.DOCKER_PASSWORD }}" | docker login -u "${{ secrets.DOCKER_USERNAME }}" --password-stdin

      - name: Build
        run: docker build -t user/app:${{ github.sha }} .

      - name: Push
        run: docker push user/app:${{ github.sha }}

      - name: Test
        run: docker run --rm user/app:${{ github.sha }} pytest
```

✅ Swap **Docker Hub** with **ECR/GCR/GHCR/Private Registry**.

---

## ⚡ Cache Optimizations (speed builds)

* **Order matters**: `COPY requirements.txt` → `RUN pip install` → `COPY . .`
* **Reuse layers**: `--cache-from` old image
* **BuildKit**: smarter, parallel cache

```yaml
- name: Build with BuildKit
  env: { DOCKER_BUILDKIT: 1 }
  run: docker build -t user/app:${{ github.sha }} .
```

---

## 🧠 Rules of thumb

* Push with **immutable tags** (`${{ github.sha }}` or `v1.2.3`).
* Test containers in pipeline before deploy.
* Use **multi-stage builds** to cut size.
* Clean old images on CI agents to save space.

---
