From 60c2f9102563dba7bc51c946a978d3317bcfff06 Mon Sep 17 00:00:00 2001
From: alufers <alufers@wp.pl>
Date: Mon, 25 May 2026 13:04:04 +0200
Subject: [PATCH] Update GitHub actions

---
 .github/workflows/build_docker.yml |  8 ++--
 .github/workflows/release.yml      | 61 ++++++++++++++----------------
 2 files changed, 32 insertions(+), 37 deletions(-)

diff --git a/.github/workflows/build_docker.yml b/.github/workflows/build_docker.yml
index e947e81..7a3dd15 100644
--- a/.github/workflows/build_docker.yml
+++ b/.github/workflows/build_docker.yml
@@ -20,24 +20,24 @@ jobs:
         uses: actions/checkout@v4
 
       - name: Log in to the Container registry
-        uses: docker/login-action@343f7c4344506bcbf9b4de18042ae17996df046d
+        uses: docker/login-action@v4
         with:
           registry: ${{ env.REGISTRY }}
           username: ${{ github.actor }}
           password: ${{ secrets.GITHUB_TOKEN }}
       - name: Extract metadata (tags, labels) for Docker
         id: meta
-        uses: docker/metadata-action@dbef88086f6cef02e264edb7dbf63250c17cef6c
+        uses: docker/metadata-action@v6
         with:
           images: ${{ env.REGISTRY }}/${{ env.IMAGE_NAME }}
           flavor: |
             latest=auto
       - name: Set up Docker Buildx
         id: buildx
-        uses: docker/setup-buildx-action@0d103c3126aa41d772a8362f6aa67afac040f80c
+        uses: docker/setup-buildx-action@v4
 
       - name: Build and push Docker image
-        uses: docker/build-push-action@4a13e500e55cf31b7a5d59a38ab2040ab0f42f56
+        uses: docker/build-push-action@v7
         with:
           context: .
           push: true
diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml
index 0eda827..8b3096a 100644
--- a/.github/workflows/release.yml
+++ b/.github/workflows/release.yml
@@ -4,7 +4,7 @@ on:
     inputs:
       release-type:
         type: choice
-        description: 'Release type (one of): patch, minor, major, prepatch, preminor, premajor, prerelease'
+        description: 'Release type (one of): patch, minor, major'
         default: 'patch'
         options:
           - 'patch'
@@ -12,29 +12,27 @@ on:
           - 'major'
         required: true
 
+permissions:
+  contents: write
+  packages: write
+
 jobs:
   release:
     runs-on: ubuntu-latest
     steps:
-      # Checkout project repository
-      - uses: actions/checkout@v4
+      - uses: actions/checkout@v6
       - name: Set up Python 3.14
-        uses: actions/setup-python@v5
+        uses: actions/setup-python@v6
         with:
           python-version: "3.14"
       - name: Install uv
-        uses: astral-sh/setup-uv@v6
+        uses: astral-sh/setup-uv@v8
         with:
           version: "latest"
       - name: Install dependencies
-        run: |
-          uv sync
-      - name: Run Python lint checks
-        run: |
-          uv run prek run --all-files
+        run: uv sync
       - name: Run Python tests
-        run: |
-          uv run pytest --cov
+        run: uv run pytest --cov
       - name: Git configuration
         run: |
           git config --global user.email "bot@example.com"
@@ -43,9 +41,7 @@ jobs:
         run: |
           uvx hatch version ${{ github.event.inputs.release-type }}
           echo "NEW_VERSION=$(uvx hatch version)" >> $GITHUB_ENV
-        env:
-          RELEASE_TYPE: ${{ github.event.inputs.release-type }}
-      - name: Build package
+      - name: Update lock file and build package
         run: |
           uv lock
           uv build
@@ -54,26 +50,25 @@ jobs:
           git add pyproject.toml uv.lock
           git commit -m "chore: release ${{ env.NEW_VERSION }}"
           git tag ${{ env.NEW_VERSION }}
-          git push origin master
-      - name: Build docker image
-        uses: docker/build-push-action@ad44023a93711e3deb337508980b4b5e9bcdc5dc
-        with:
-          context: .
-          push: false
-          platforms: linux/amd64
-          tags: ${{ steps.meta.outputs.tags }}
-          labels: ${{ steps.meta.outputs.labels }}
-      # Push repository changes
-      - name: Publish package
-        run: |
-          uv publish
+          git push origin master --follow-tags
+      - name: Publish package to PyPI
+        run: uv publish
         env:
           UV_PUBLISH_TOKEN: ${{ secrets.PYPI_TOKEN }}
-      - name: Push docker image
-        uses: docker/build-push-action@ad44023a93711e3deb337508980b4b5e9bcdc5dc
+      - name: Log in to the Container registry
+        uses: docker/login-action@v4
+        with:
+          registry: ghcr.io
+          username: ${{ github.actor }}
+          password: ${{ secrets.GITHUB_TOKEN }}
+      - name: Set up Docker Buildx
+        uses: docker/setup-buildx-action@v4
+      - name: Build and push Docker image
+        uses: docker/build-push-action@v7
         with:
           context: .
-          push: false
+          push: true
           platforms: linux/amd64
-          tags: ${{ steps.meta.outputs.tags }}
-          labels: ${{ steps.meta.outputs.labels }}
+          tags: |
+            ghcr.io/${{ github.repository }}:${{ env.NEW_VERSION }}
+            ghcr.io/${{ github.repository }}:latest