Fix CI and release container publishing#2127
Open
SharonHart wants to merge 8 commits into
Open
Conversation
Build analyzer release images on native platform runners and create manifests afterward. Stop CI from publishing ephemeral gha images by building and testing Docker images locally in the same job. Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com>
Contributor
Coverage report (presidio-anonymizer)
Click to see where and how coverage changed
This report was generated by python-coverage-comment-action |
||||||||||||||||||||||||||||||||||||
Contributor
Coverage report (presidio-cli)
This PR does not seem to contain any modification to coverable code. |
Contributor
Coverage report (presidio-structured)
This PR does not seem to contain any modification to coverable code. |
Contributor
There was a problem hiding this comment.
Pull request overview
This PR updates the GitHub Actions CI and release workflows to change how Docker images are built/tested and how release images are published to GHCR, with the goal of preventing CI from pushing ephemeral gha* tags while still producing correct multi-arch release images.
Changes:
- CI: remove the main-branch “build + push platform images + create manifests + GHCR-pull E2E” pipeline and replace it with local
docker compose build+ E2E tests (no image publishing). - Release: stop building
presidio-analyzervia the existing multi-platform build path; instead build/push per-platform analyzer images on native runners and then create multi-arch manifests. - Release: keep
presidio-anonymizerandpresidio-image-redactoron the existing multi-platform build/push flow.
Reviewed changes
Copilot reviewed 2 out of 2 changed files in this pull request and generated no comments.
| File | Description |
|---|---|
| .github/workflows/release.yml | Splits analyzer release builds into native per-arch image pushes plus a manifest creation job; keeps anonymizer/image-redactor on the existing multi-arch build flow. |
| .github/workflows/ci.yml | Removes CI jobs that pushed ephemeral images/manifests to GHCR; runs E2E against locally-built Compose images on amd64 and arm64 runners. |
Contributor
Coverage report (presidio-image-redactor)
Click to see where and how coverage changed
This report was generated by python-coverage-comment-action |
||||||||||||||||||||||||||||||||||||
Run release container builds through a shared image/platform matrix on native runners before creating manifests. Keep CI image builds as ephemeral artifacts that E2E jobs download and load instead of publishing gha tags to GHCR. Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com>
Contributor
Coverage report (presidio-analyzer)
Click to see where and how coverage changed
The report is truncated to 25 files out of 69. To see the full report, please visit the workflow summary page. This report was generated by python-coverage-comment-action |
||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com>
Copilot stopped reviewing on behalf of
SharonHart due to an error
June 28, 2026 19:16
Comment on lines
+177
to
+178
| for image in presidio-anonymizer presidio-analyzer presidio-image-redactor; do | ||
| repo="${{ env.IMAGE_REGISTRY }}/${{ env.IMAGE_NAMESPACE }}/${image}" |
Comment on lines
+185
to
+189
| for tag in latest "${version_tag}"; do | ||
| docker buildx imagetools create \ | ||
| --tag ${repo}:${tag} \ | ||
| ${repo}:${tag}-linux-amd64 \ | ||
| ${repo}:${tag}-linux-arm64 |
omri374
previously approved these changes
Jun 28, 2026
Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com>
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Summary
gha*tags to GHCRValidation