add docker file for pgpm modules

Anmol1696 · Anmol1696 · commit e09d7bc84f19 · 2025-12-01T17:31:58.000+05:30
diff --git a/.dockerignore b/.dockerignore
@@ -0,0 +1,12 @@
+node_modules
+**/node_modules
+**/dist
+**/.DS_Store
+.git
+.gitignore
+.github
+npm-debug.log
+pnpm-debug.log
+yarn-error.log
+Dockerfile*
+
diff --git a/.github/workflows/docker.yaml b/.github/workflows/docker.yaml
@@ -0,0 +1,77 @@
+name: Docker
+
+on:
+  push:
+    branches:
+      - main
+    paths:
+      - '.github/workflows/docker.yaml'
+  pull_request:
+    branches:
+      - main
+  workflow_dispatch: {}
+
+permissions:
+  contents: read
+  packages: write
+
+concurrency:
+  group: docker-pgpm-modules-${{ github.ref }}
+  cancel-in-progress: true
+
+env:
+  IMAGE_NAME: pgpm/modules
+  IMAGE_REGISTRY: ghcr.io
+  IMAGE_REPO: ${{ github.repository_owner }}
+  BUILD_CONTEXT: pgpm-modules
+  DOCKERFILE_PATH: pgpm-modules/Dockerfile
+  PLATFORMS: ${{ github.event_name != 'pull_request' && 'linux/amd64,linux/arm64' || 'linux/amd64' }}
+
+jobs:
+  build-and-push:
+    runs-on: ubuntu-latest
+    steps:
+      - name: Checkout
+        uses: actions/checkout@v4
+
+      - name: Set up QEMU (enable arm64 emulation)
+        uses: docker/setup-qemu-action@v3
+
+      - name: Set up Docker Buildx
+        uses: docker/setup-buildx-action@v3
+
+      - name: Login to GHCR
+        if: github.event_name != 'pull_request'
+        uses: docker/login-action@v3
+        with:
+          registry: ghcr.io
+          username: ${{ github.actor }}
+          password: ${{ secrets.GITHUB_TOKEN }}
+
+      - name: Extract Docker metadata
+        id: meta
+        uses: docker/metadata-action@v5
+        with:
+          images: |
+            ${{ env.IMAGE_REGISTRY }}/${{ env.IMAGE_REPO }}/${{ env.IMAGE_NAME }}
+          tags: |
+            type=sha,format=short,prefix=
+            type=ref,event=branch
+            type=ref,event=pr
+            type=raw,value=latest,enable={{is_default_branch}}
+
+      - name: Build and push
+        uses: docker/build-push-action@v6
+        with:
+          context: ${{ env.BUILD_CONTEXT }}
+          file: ${{ env.DOCKERFILE_PATH }}
+          push: ${{ github.event_name != 'pull_request' }}
+          platforms: ${{ env.PLATFORMS }}
+          tags: ${{ steps.meta.outputs.tags }}
+          labels: ${{ steps.meta.outputs.labels }}
+          cache-from: type=gha
+          cache-to: type=gha,mode=max
+
+      - name: Image digest
+        run: echo "Pushed ${{ env.IMAGE_REGISTRY }}/${{ env.IMAGE_REPO }}/${{ env.IMAGE_NAME }} with tags - ${{ steps.meta.outputs.tags }}"
+
diff --git a/Dockerfile b/Dockerfile
@@ -0,0 +1,69 @@
+ARG BASE=node
+ARG BASE_VERSION=20-bookworm
+FROM ${BASE}:${BASE_VERSION} AS build
+
+LABEL org.opencontainers.image.source="https://github.com/launchql/pgpm-modules"
+ARG BASE
+ARG BASE_VERSION
+ENV BASE_VERSION=${BASE_VERSION}
+
+WORKDIR /app
+
+# System deps and pnpm (match workspace requirement)
+RUN set -eux; \
+    apt-get update; \
+    apt-get install -y --no-install-recommends ca-certificates curl git; \
+    update-ca-certificates || true; \
+    corepack enable; \
+    corepack prepare pnpm@10.12.2 --activate; \
+    rm -rf /var/lib/apt/lists/*
+
+# Copy workspace (build context should be pgpm-modules directory)
+COPY . .
+
+# Install workspace deps and bundle packages
+RUN set -eux; \
+    pnpm install --frozen-lockfile; \
+    pnpm -r bundle
+
+# Collect packaged SQL and relevant metadata into /out
+RUN set -eux; \
+    mkdir -p /out; \
+    for p in /app/packages/*; do \
+      name="$(basename "$p")"; \
+      dest="/out/${name}"; \
+      mkdir -p "$dest"; \
+      # copy packaged SQL if present
+      if [ -d "$p/sql" ]; then \
+        mkdir -p "$dest/sql"; \
+        cp -R "$p/sql"/* "$dest/sql/" || true; \
+      fi; \
+      # copy plan for reference (optional at runtime)
+      if [ -f "$p/pgpm.plan" ]; then \
+        cp "$p/pgpm.plan" "$dest/"; \
+      fi; \
+      # include package.json for provenance/versioning
+      if [ -f "$p/package.json" ]; then \
+        cp "$p/package.json" "$dest/"; \
+      fi; \
+    done
+
+################################################################################
+FROM debian:bookworm-slim AS runtime
+
+LABEL org.opencontainers.image.source="https://github.com/launchql/pgpm-modules"
+WORKDIR /pgpm
+
+# Minimal runtime with CA certs for potential HTTPS fetches
+RUN set -eux; \
+    apt-get update; \
+    apt-get install -y --no-install-recommends ca-certificates; \
+    update-ca-certificates || true; \
+    rm -rf /var/lib/apt/lists/*
+
+COPY --from=build /out /pgpm/packages
+
+ENV PGPM_MODULES_DIR=/pgpm/packages
+
+# Default command: list packaged modules
+CMD ["sh", "-lc", "ls -1 ${PGPM_MODULES_DIR} || true"]
