Added a workflow that runs when a Dockerfile has changed in a PR or push

Signed-off-by: Roland Asmann <[email protected]>

Author: malice00

.github/actions/build-docker-image/action.yml

@@ -13,13 +13,11 @@ inputs:
     description: Labels to add to the image
   output:
     description: Controls what should be done with the image(s) after building
-    required: true
   platforms:
     description: The platforms for which to build the image
     required: true
   tags:
     description: All tags for the image
-    required: true
   target:
     description: Which stage in the Dockerfile to build
     required: true
@@ -35,8 +33,7 @@ runs:
         context: .
         file: ${{ inputs.dockerfile }}
         labels: ${{ inputs.labels }}
-        outputs: type=${{ inputs.output }}
+        outputs: ${{ inputs.output }}
         platforms: ${{ inputs.platforms }}
-        push: ${{ inputs.action == 'push' }}
         tags: ${{ inputs.tags }}
         target: ${{ inputs.target }}

.github/actions/build-docker-images-generate-attach-sboms/action.yml

@@ -55,7 +55,7 @@ runs:
         dockerfile: ${{ inputs.dockerfile }}
         docker-args: ${{ inputs.docker-args }}
         labels: ${{ steps.metadata.outputs.labels }}
-        output: registry
+        output: type=registry
         platforms: linux/amd64${{ inputs.build-arm == 'true' && ',linux/arm64' || '' }}
         tags: ${{ inputs.tags || steps.metadata.outputs.tags }}
         target: ${{ inputs.target }}

.github/actions/generate-attach-sbom/action.yml

@@ -30,7 +30,7 @@ runs:
       with:
         dockerfile: ${{ inputs.dockerfile }}
         docker-args: ${{ inputs.docker-args }}
-        output: docker,dest=${{ runner.temp }}/image.tar
+        output: type=docker,dest=${{ runner.temp }}/image.tar
         platforms: ${{ inputs.platform }}
         tags: ${{ inputs.tag }}
         target: ${{ inputs.target }}

.github/workflows/build-image.yml

@@ -0,0 +1,69 @@
+name: Build image(s) on PR/push
+
+on:
+  pull_request:
+    paths:
+      - ci/images/**/Dockerfile.*
+  push:
+    paths:
+      - ci/images/**/Dockerfile.*
+
+concurrency:
+  group: ${{ github.workflow }}-${{ github.event.pull_request.number || github.ref }}
+  cancel-in-progress: true
+
+permissions: {}
+
+jobs:
+  filter:
+    if: github.repository == 'CycloneDX/cdxgen'
+    runs-on: ubuntu-24.04
+    outputs:
+      imagefiles: ${{ steps.changed.outputs.files }}
+    steps:
+      - name: Get changed files
+        id: changed
+        uses: actions/github-script@v7
+        with:
+          script: |
+            const response = await github.rest.repos.compareCommits({
+              owner: context.repo.owner,
+              repo: context.repo.repo,
+              base: context.payload.before,
+              head: context.payload.after
+            });
+            const files = response.data.files
+              .map(f => f.filename)
+              .filter(f => f.includes("Dockerfile"));
+            core.setOutput("files", JSON.stringify(files));
+  image:
+    if: github.repository == 'CycloneDX/cdxgen'
+    needs: filter
+    strategy:
+      fail-fast: false
+      matrix:
+        imagefile: ${{ fromJson(needs.filter.outputs.imagefiles) }}
+        platform: [ amd64, arm64 ]
+        # Some images don't work on linux/arm64
+        exclude:
+          - imagefile: ci/images/Dockerfile.dotnet7
+            platform: arm64
+          - imagefile: ci/images/Dockerfile.dotnet8
+            platform: arm64
+          - imagefile: ci/images/Dockerfile.dotnet9
+            platform: arm64
+          - imagefile: ci/images/Dockerfile.ruby25
+            platform: arm64
+          - imagefile: ci/images/debian/Dockerfile.ruby26
+            platform: arm64
+    runs-on: ${{ matrix.platform == 'amd64' && 'ubuntu-24.04' || 'ubuntu-24.04-arm' }}
+    steps:
+      - uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0
+        with:
+          persist-credentials: false
+      - name: Build image
+        uses: ./.github/actions/build-docker-image
+        with:
+          dockerfile: ${{ matrix.imagefile }}
+          platforms: ${{ matrix.platform }}
+          target: cdxgen