mirror of
https://github.com/huggingface/text-generation-inference.git
synced 2025-09-10 03:44:54 +00:00
activate cosign
This commit is contained in:
OlivierDehaene
parent
979f58c061
commit
61e6e880d5
127
.github/workflows/build.yaml
vendored
127
.github/workflows/build.yaml
vendored
@ -88,76 +88,75 @@ jobs:
|
|||||||
type=semver,pattern={{major}}.{{minor}}
|
type=semver,pattern={{major}}.{{minor}}
|
||||||
type=raw,value=latest,enable=${{ github.ref == format('refs/heads/{0}', github.event.repository.default_branch) }}
|
type=raw,value=latest,enable=${{ github.ref == format('refs/heads/{0}', github.event.repository.default_branch) }}
|
||||||
type=raw,value=sha-${{ env.GITHUB_SHA_SHORT }}
|
type=raw,value=sha-${{ env.GITHUB_SHA_SHORT }}
|
||||||
# - name: Build and push Docker image
|
- name: Build and push Docker image
|
||||||
# uses: docker/build-push-action@v4
|
uses: docker/build-push-action@v4
|
||||||
# with:
|
with:
|
||||||
# context: .
|
context: .
|
||||||
# file: Dockerfile
|
file: Dockerfile
|
||||||
# push: ${{ github.event_name != 'pull_request' }}
|
push: ${{ github.event_name != 'pull_request' }}
|
||||||
# platforms: 'linux/amd64'
|
platforms: 'linux/amd64'
|
||||||
# tags: ${{ steps.meta.outputs.tags }}
|
tags: ${{ steps.meta.outputs.tags }}
|
||||||
# labels: ${{ steps.meta.outputs.labels }}
|
labels: ${{ steps.meta.outputs.labels }}
|
||||||
# cache-from: type=registry,ref=registry.internal.huggingface.tech/api-inference/community/text-generation-inference:cache,mode=max
|
cache-from: type=registry,ref=registry.internal.huggingface.tech/api-inference/community/text-generation-inference:cache,mode=max
|
||||||
# cache-to: type=registry,ref=registry.internal.huggingface.tech/api-inference/community/text-generation-inference:cache,mode=max
|
cache-to: type=registry,ref=registry.internal.huggingface.tech/api-inference/community/text-generation-inference:cache,mode=max
|
||||||
|
|
||||||
# Sign the resulting Docker image digest except on PRs.
|
# Sign the resulting Docker image digest except on PRs.
|
||||||
# This will only write to the public Rekor transparency log when the Docker
|
# This will only write to the public Rekor transparency log when the Docker
|
||||||
# repository is public to avoid leaking data.
|
# repository is public to avoid leaking data.
|
||||||
- name: Sign the published Docker image
|
- name: Sign the published Docker image
|
||||||
# if: ${{ github.event_name != 'pull_request' }}
|
if: ${{ github.event_name != 'pull_request' }}
|
||||||
env:
|
env:
|
||||||
COSIGN_EXPERIMENTAL: "true"
|
COSIGN_EXPERIMENTAL: "true"
|
||||||
# This step uses the identity token to provision an ephemeral certificate
|
# This step uses the identity token to provision an ephemeral certificate
|
||||||
# against the sigstore community Fulcio instance.
|
# against the sigstore community Fulcio instance.
|
||||||
# run: echo "${{ steps.meta.outputs.tags }}" | xargs -I {} cosign sign {}@${{ steps.build-and-push.outputs.digest }}
|
run: echo "${{ steps.meta.outputs.tags }}" | xargs -I {} cosign sign {}@${{ steps.build-and-push.outputs.digest }}
|
||||||
run: echo "${{ steps.meta.outputs.tags }}"
|
|
||||||
#
|
build-and-push-sagemaker-image:
|
||||||
# build-and-push-sagemaker-image:
|
needs:
|
||||||
# needs:
|
- build-and-push-image
|
||||||
# - build-and-push-image
|
runs-on: ubuntu-latest
|
||||||
# runs-on: ubuntu-latest
|
steps:
|
||||||
# steps:
|
- name: Checkout repository
|
||||||
# - name: Checkout repository
|
uses: actions/checkout@v3
|
||||||
# uses: actions/checkout@v3
|
- name: Initialize Docker Buildx
|
||||||
# - name: Initialize Docker Buildx
|
uses: docker/setup-buildx-action@v2.0.0
|
||||||
# uses: docker/setup-buildx-action@v2.0.0
|
with:
|
||||||
# with:
|
install: true
|
||||||
# install: true
|
- name: Inject slug/short variables
|
||||||
# - name: Inject slug/short variables
|
uses: rlespinasse/github-slug-action@v4.4.1
|
||||||
# uses: rlespinasse/github-slug-action@v4.4.1
|
- name: Tailscale
|
||||||
# - name: Tailscale
|
if: github.event_name != 'pull_request'
|
||||||
# if: github.event_name != 'pull_request'
|
uses: tailscale/github-action@v1
|
||||||
# uses: tailscale/github-action@v1
|
with:
|
||||||
# with:
|
authkey: ${{ secrets.TAILSCALE_AUTHKEY }}
|
||||||
# authkey: ${{ secrets.TAILSCALE_AUTHKEY }}
|
- name: Login to internal Container Registry
|
||||||
# - name: Login to internal Container Registry
|
if: github.event_name != 'pull_request'
|
||||||
# if: github.event_name != 'pull_request'
|
uses: docker/login-action@v2.1.0
|
||||||
# uses: docker/login-action@v2.1.0
|
with:
|
||||||
# with:
|
username: ${{ secrets.TAILSCALE_DOCKER_USERNAME }}
|
||||||
# username: ${{ secrets.TAILSCALE_DOCKER_USERNAME }}
|
password: ${{ secrets.TAILSCALE_DOCKER_PASSWORD }}
|
||||||
# password: ${{ secrets.TAILSCALE_DOCKER_PASSWORD }}
|
registry: registry.internal.huggingface.tech
|
||||||
# registry: registry.internal.huggingface.tech
|
- name: Extract metadata (tags, labels) for Docker
|
||||||
# - name: Extract metadata (tags, labels) for Docker
|
id: meta
|
||||||
# id: meta
|
uses: docker/metadata-action@v4.3.0
|
||||||
# uses: docker/metadata-action@v4.3.0
|
with:
|
||||||
# with:
|
flavor: |
|
||||||
# flavor: |
|
latest=auto
|
||||||
# latest=auto
|
images: |
|
||||||
# images: |
|
registry.internal.huggingface.tech/api-inference/community/text-generation-inference/sagemaker
|
||||||
# registry.internal.huggingface.tech/api-inference/community/text-generation-inference/sagemaker
|
tags: |
|
||||||
# tags: |
|
type=semver,pattern={{version}}
|
||||||
# type=semver,pattern={{version}}
|
type=semver,pattern={{major}}.{{minor}}
|
||||||
# type=semver,pattern={{major}}.{{minor}}
|
type=raw,value=latest,enable=${{ github.ref == format('refs/heads/{0}', github.event.repository.default_branch) }}
|
||||||
# type=raw,value=latest,enable=${{ github.ref == format('refs/heads/{0}', github.event.repository.default_branch) }}
|
type=raw,value=sha-${{ env.GITHUB_SHA_SHORT }}
|
||||||
# type=raw,value=sha-${{ env.GITHUB_SHA_SHORT }}
|
- name: Build and push Docker image
|
||||||
# - name: Build and push Docker image
|
uses: docker/build-push-action@v2
|
||||||
# uses: docker/build-push-action@v2
|
with:
|
||||||
# with:
|
context: .
|
||||||
# context: .
|
file: Dockerfile
|
||||||
# file: Dockerfile
|
push: ${{ github.event_name != 'pull_request' }}
|
||||||
# push: ${{ github.event_name != 'pull_request' }}
|
platforms: 'linux/amd64'
|
||||||
# platforms: 'linux/amd64'
|
target: sagemaker
|
||||||
# target: sagemaker
|
tags: ${{ steps.meta.outputs.tags }}
|
||||||
# tags: ${{ steps.meta.outputs.tags }}
|
labels: ${{ steps.meta.outputs.labels }}
|
||||||
# labels: ${{ steps.meta.outputs.labels }}
|
cache-from: type=registry,ref=registry.internal.huggingface.tech/api-inference/community/text-generation-inference:cache,mode=max
|
||||||
# cache-from: type=registry,ref=registry.internal.huggingface.tech/api-inference/community/text-generation-inference:cache,mode=max
|
|
||||||
Loading…
Reference in New Issue
Block a user