build: add remaining build inputs

Signed-off-by: CrazyMax <[email protected]>

Author: crazy-max

.github/workflows/build.yml

@@ -54,6 +54,11 @@ on:
         type: string
         description: "QEMU static binaries Docker image (e.g. tonistiigi/binfmt:latest)"
         required: false
+      # same as docker/build-push-action inputs
+      build-annotations:
+        type: string
+        description: "List of annotation to set to the image"
+        required: false
       build-args:
         type: string
         description: "List of build-time variables"
@@ -62,6 +67,10 @@ on:
         type: string
         description: "Path to the Dockerfile"
         required: false
+      build-labels:
+        type: string
+        description: "List of metadata for an image"
+        required: false
       build-output:
         type: string
         description: "Build output destination (one of cacheonly, registry, local)"
@@ -71,10 +80,27 @@ on:
         type: string
         description: "List of target platforms to build"
         required: false
+      build-pull:
+        type: boolean
+        description: "Always attempt to pull all referenced images"
+        required: false
+        default: false
       build-sbom:
         type: string
         description: "Generate SBOM attestation for the build (shorthand for --attest=type=sbom)"
         required: false
+      build-shm-size:
+        type: string
+        description: "Size of /dev/shm (e.g., 2g)"
+        required: false
+      build-target:
+        type: string
+        description: "Sets the target stage to build"
+        required: false
+      build-ulimit:
+        type: string
+        description: "Ulimit options (e.g., nofile=1024:1024)"
+        required: false
     secrets:
       registry-auths:
         description: "Registry authentication details as YAML objects"
@@ -96,6 +122,17 @@ jobs:
       packages: write # needed for pushing the images to GitHub Packages
       id-token: write # needed for signing the images with GitHub OIDC Token
     steps:
+      -
+        name: Docker meta
+        id: meta
+        if: ${{ inputs.build-output == 'registry' }}
+        uses: docker/metadata-action@v5
+        with:
+          images: ${{ inputs.meta-images }}
+          tags: ${{ inputs.meta-tags }}
+          flavor: ${{ inputs.meta-flavor }}
+          labels: ${{ inputs.meta-labels }}
+          annotations: ${{ inputs.meta-annotations }}
       -
         name: Prepare
         id: prepare
@@ -106,13 +143,27 @@ jobs:
           INPUT_CACHE-MODE: ${{ inputs.cache-mode }}
           INPUT_META-IMAGES: ${{ inputs.meta-images }}
           INPUT_BUILD-OUTPUT: ${{ inputs.build-output }}
+          INPUT_BUILD-ANNOTATIONS: ${{ inputs.build-annotations }}
+          INPUT_SET-META-ANNOTATIONS: ${{ inputs.set-meta-annotations }}
+          INPUT_META-ANNOTATIONS: ${{ steps.meta.outputs.annotations }}
+          INPUT_BUILD-LABELS: ${{ inputs.build-labels }}
+          INPUT_SET-META-LABELS: ${{ inputs.set-meta-labels }}
+          INPUT_META-LABELS: ${{ steps.meta.outputs.labels }}
+          INPUT_BUILD-TARGET: ${{ inputs.build-target }}
         with:
           script: |
             const inpLocalExportDir = core.getInput('local-export-dir');
             const inpCache = core.getBooleanInput('cache');
             const inpCacheMode = core.getInput('cache-mode');
             const inpMetaImages = core.getMultilineInput('meta-images');
             const inpBuildOutput = core.getInput('build-output');
+            const inpSetMetaAnnotations = core.getBooleanInput('set-meta-annotations');
+            const inpBuildAnnotations = core.getMultilineInput('build-annotations');
+            const inpMetaAnnotations = core.getMultilineInput('meta-annotations');
+            const inpSetMetaLabels = core.getBooleanInput('set-meta-labels');
+            const inpBuildLabels = core.getMultilineInput('build-labels');
+            const inpMetaLabels = core.getMultilineInput('meta-labels');
+            const inpBuildTarget = core.getInput('build-target');
             
             switch (inpBuildOutput) {
               case 'cacheonly':
@@ -135,6 +186,16 @@ jobs:
               core.setOutput('cache-from', `type=gha,scope=docker-github-builder`);
               core.setOutput('cache-to', `type=gha,scope=docker-github-builder,mode=${inpCacheMode}`);
             }
+            
+            if (inpSetMetaAnnotations && inpMetaAnnotations.length > 0) {
+              inpBuildAnnotations.push(...inpMetaAnnotations);
+            }
+            core.setOutput('annotations', inpBuildAnnotations.join('\n'));
+            
+            if (inpSetMetaLabels && inpMetaLabels.length > 0) {
+              inpBuildLabels.push(...inpMetaLabels);
+            }
+            core.setOutput('labels', inpBuildLabels.join('\n'));
       -
         name: Set up QEMU
         uses: docker/setup-qemu-action@v3
@@ -153,32 +214,25 @@ jobs:
         uses: crazy-max/docker-login-action@dockerhub-oidc
         with:
           registry-auth: ${{ secrets.registry-auths }}
-      -
-        name: Docker meta
-        id: meta
-        if: ${{ inputs.build-output == 'registry' }}
-        uses: docker/metadata-action@v5
-        with:
-          images: ${{ inputs.meta-images }}
-          tags: ${{ inputs.meta-tags }}
-          flavor: ${{ inputs.meta-flavor }}
-          labels: ${{ inputs.meta-labels }}
-          annotations: ${{ inputs.meta-annotations }}
       -
         name: Build
         id: build
         uses: docker/build-push-action@v6
         with:
+          annotations: ${{ steps.prepare.outputs.annotations }}
           build-args: ${{ inputs.build-args }}
-          file: ${{ inputs.build-file }}
-          platforms: ${{ inputs.build-platforms }}
-          outputs: ${{ steps.prepare.outputs.output }}
           cache-from: ${{ steps.prepare.outputs.cache-from }}
           cache-to: ${{ steps.prepare.outputs.cache-to }}
+          file: ${{ inputs.build-file }}
+          labels: ${{ steps.prepare.outputs.labels }}
+          outputs: ${{ steps.prepare.outputs.output }}
+          platforms: ${{ inputs.build-platforms }}
           provenance: mode=max,version=v1
+          pull: ${{ inputs.build-pull }}
           sbom: ${{ inputs.build-sbom }}
-          labels: ${{ inputs.set-meta-labels && steps.meta.outputs.labels || '' }}
-          annotations: ${{ inputs.set-meta-annotations && steps.meta.outputs.annotations || '' }}
+          shm-size: ${{ inputs.build-shm-size }}
+          target: ${{ inputs.build-target }}
+          ulimit: ${{ inputs.build-ulimit }}
           github-token: ${{ secrets.github-token || github.token }}
         env:
           BUILDKIT_MULTI_PLATFORM: 1
@@ -285,6 +339,6 @@ jobs:
         if: ${{ inputs.build-output == 'local' }}
         uses: actions/upload-artifact@v4
         with:
-          name: docker-github-builder-output
+          name: docker-github-builder-assets
           path: ${{ env.LOCAL_EXPORT_DIR }}
           if-no-files-found: error