Skip to content

ci(controller): docker publish workflow + CHANGELOG#5

Merged
haydercyber merged 1 commit into
mainfrom
ci/docker-publish
May 29, 2026
Merged

ci(controller): docker publish workflow + CHANGELOG#5
haydercyber merged 1 commit into
mainfrom
ci/docker-publish

Conversation

@haydercyber
Copy link
Copy Markdown
Contributor

@haydercyber haydercyber commented May 29, 2026

What this does

Adds .github/workflows/docker-publish.yml — multi-arch image publishing to GHCR (ghcr.io/secrets-bridge/controller) on every push to main and every v*.*.* git tag.

Tag strategy

Trigger Tags produced
Push to main dev, main, sha-<short>
Push tag v0.1.0 v0.1.0, v0.1, 0, latest
workflow_dispatch dev-only

Until v0.1.0 ships, consumers pin ghcr.io/secrets-bridge/controller:dev. Post-v0.1.0 they switch to pinned semver tags or latest.

CHANGELOG

CHANGELOG.md scaffolded under Keep-a-Changelog with the v0.1.0 release runbook at the bottom.

Related

Same pattern shipped to api in secrets-bridge/api#42; same shape lands on agent / ui / worker in parallel.

@haydercyber
ci(controller): docker publish workflow + CHANGELOG
903c77d 
Publishes the controller image to GHCR on every push to main + every
v*.*.* tag. Multi-arch (linux/amd64 + linux/arm64) via QEMU.

Tagging strategy:
- Push to main           → `dev`, `main`, `sha-<short>`
- Push tag `v0.1.0`      → `v0.1.0`, `v0.1`, `0`, `latest`
- workflow_dispatch      → `dev`-only

CHANGELOG.md scaffolded under Keep-a-Changelog with the cut-a-release
runbook for v0.1.0+.
@haydercyber haydercyber merged commit 786c258 into main May 29, 2026
4 checks passed
@haydercyber haydercyber deleted the ci/docker-publish branch May 29, 2026 21:27
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@haydercyber