guettli/sharedinbox
1
0
Fork 0
Code Issues 21 Pull Requests 6 Actions Packages Projects Releases Wiki Activity

fix: automate dev container image build via devcontainer.json + CI #552

New Issue
Closed
opened 2026-06-09 14:06:47 +00:00 by guettlibot · 1 comment
guettlibot commented 2026-06-09 14:06:47 +00:00 (Migrated from codeberg.org)
Copy Link
Copy Source

Problem

`Dockerfile.dev` is the source for `ghcr.io/guettli/sharedinbox-dev` but the image was pushed manually. There is no CI workflow that rebuilds and republishes the image when the Dockerfile changes, so the published image can silently drift from its source.

Plan

1. Add `.devcontainer/devcontainer.json`

Create `.devcontainer/devcontainer.json` referencing `../Dockerfile.dev` as the build source. This:

  • Makes the relationship between the Dockerfile and the published image explicit and machine-readable
  • Enables VS Code / Codespaces / any devcontainer-aware tool to build the environment directly from source
  • Serves as the canonical definition that the CI workflow reads

2. Add `.forgejo/workflows/publish-dev-container.yml`

Trigger on push to `main` when `Dockerfile.dev` changes. Build and push the image to the Codeberg container registry (`codeberg.org/guettli/sharedinbox-dev`) using the built-in `FORGEJO_TOKEN` — no extra secrets needed.

Steps:

  • `docker build -t codeberg.org/guettli/sharedinbox-dev:latest -f Dockerfile.dev .`
  • Tag with the short commit SHA for pinnable references
  • `docker push` both tags

3. Update image reference

Update any references from the manually-pushed `ghcr.io/guettli/sharedinbox-dev` to `codeberg.org/guettli/sharedinbox-dev`.

Alternative: Keep GHCR and push from CI using a `GITHUB_PAT_PACKAGES` secret (`write:packages` scope). Codeberg's own registry is simpler since `FORGEJO_TOKEN` works out of the box.

Acceptance criteria

  • `.devcontainer/devcontainer.json` present and valid
  • CI workflow triggers on `Dockerfile.dev` changes and pushes a new image
  • Image tagged with both `latest` and the commit SHA
  • No manual push step required to keep the image in sync

Agentloop runs

# Started (UTC) Ended (UTC) Status Tokens in Tokens out
1 2026-06-09 14:22:05 2026-06-09 14:27:03 success 57 11 119
## Problem \`Dockerfile.dev\` is the source for \`ghcr.io/guettli/sharedinbox-dev\` but the image was pushed manually. There is no CI workflow that rebuilds and republishes the image when the Dockerfile changes, so the published image can silently drift from its source. ## Plan ### 1. Add \`.devcontainer/devcontainer.json\` Create \`.devcontainer/devcontainer.json\` referencing \`../Dockerfile.dev\` as the build source. This: - Makes the relationship between the Dockerfile and the published image explicit and machine-readable - Enables VS Code / Codespaces / any devcontainer-aware tool to build the environment directly from source - Serves as the canonical definition that the CI workflow reads ### 2. Add \`.forgejo/workflows/publish-dev-container.yml\` Trigger on push to \`main\` when \`Dockerfile.dev\` changes. Build and push the image to the Codeberg container registry (\`codeberg.org/guettli/sharedinbox-dev\`) using the built-in \`FORGEJO_TOKEN\` — no extra secrets needed. Steps: - \`docker build -t codeberg.org/guettli/sharedinbox-dev:latest -f Dockerfile.dev .\` - Tag with the short commit SHA for pinnable references - \`docker push\` both tags ### 3. Update image reference Update any references from the manually-pushed \`ghcr.io/guettli/sharedinbox-dev\` to \`codeberg.org/guettli/sharedinbox-dev\`. > **Alternative:** Keep GHCR and push from CI using a \`GITHUB_PAT_PACKAGES\` secret (\`write:packages\` scope). Codeberg's own registry is simpler since \`FORGEJO_TOKEN\` works out of the box. ## Acceptance criteria - [ ] \`.devcontainer/devcontainer.json\` present and valid - [ ] CI workflow triggers on \`Dockerfile.dev\` changes and pushes a new image - [ ] Image tagged with both \`latest\` and the commit SHA - [ ] No manual push step required to keep the image in sync --- --- <!-- agentloop-summary --> **Agentloop runs** | # | Started (UTC) | Ended (UTC) | Status | Tokens in | Tokens out | |---|---------------------|---------------------|---------|-----------|------------| | 1 | 2026-06-09 14:22:05 | 2026-06-09 14:27:03 | success | 57 | 11 119 |
guettlibot commented 2026-06-09 14:27:03 +00:00 (Migrated from codeberg.org)
Copy Link
Copy Source

PR #553 is open against main.

Summary

Implemented #552 in PR #553:

  • .devcontainer/devcontainer.json — references ../Dockerfile.dev so devcontainer-aware tools (VS Code, Codespaces, etc.) build the dev environment from source, and makes the relationship between the Dockerfile and the published image explicit/machine-readable.
  • .forgejo/workflows/publish-dev-container.yml — triggers on push to main when Dockerfile.dev, the devcontainer config, or the workflow itself changes (plus workflow_dispatch). Logs in to codeberg.org with the built-in FORGEJO_TOKEN, builds the image, tags it both :latest and :<short-sha>, and pushes both.

Note on step 3 of the plan: grepping for sharedinbox-dev and ghcr.io showed no existing references to update — Dockerfile.dev is brand new (added in the recent drop-nix commit 517f7a6) and no consumer hardcodes the image yet, so the "update references" step is a no-op for this change.

Verified the new JSON/YAML files parse cleanly with Python.

agentloop · agent: claude

PR #553 is open against `main`. ## Summary Implemented #552 in PR [#553](https://codeberg.org/guettli/sharedinbox/pulls/553): - **`.devcontainer/devcontainer.json`** — references `../Dockerfile.dev` so devcontainer-aware tools (VS Code, Codespaces, etc.) build the dev environment from source, and makes the relationship between the Dockerfile and the published image explicit/machine-readable. - **`.forgejo/workflows/publish-dev-container.yml`** — triggers on push to `main` when `Dockerfile.dev`, the devcontainer config, or the workflow itself changes (plus `workflow_dispatch`). Logs in to `codeberg.org` with the built-in `FORGEJO_TOKEN`, builds the image, tags it both `:latest` and `:<short-sha>`, and pushes both. Note on step 3 of the plan: grepping for `sharedinbox-dev` and `ghcr.io` showed no existing references to update — `Dockerfile.dev` is brand new (added in the recent drop-nix commit `517f7a6`) and no consumer hardcodes the image yet, so the "update references" step is a no-op for this change. Verified the new JSON/YAML files parse cleanly with Python. <sub>agentloop · agent: claude</sub>
Sign in to join this conversation.
No Branch/Tag Specified
Branches Tags
Labels
Clear labels
NeedSupervisor
Issue escalated to a human supervisor; agentloop will skip it until cleared.
 State/InProgress
State/Later
State/Planned
automerge
Eligible for automatic merge by CI
 ci-failure
Issue opened by agentloop to track a failing CI workflow; used for deduplication.
 do-not-merge
Plan PR — review only, do not merge.
 loop/code
Add to run the built-in "code" prompt; override at prompts/code.md.
 loop/code-ci-pending
Prompt "code" finished; waiting for the PR's CI to pass before advancing.
 loop/code-done
Prompt "code" finished successfully.
 loop/code-in-process
Agent for the "code" prompt is currently running on this issue.
 loop/merge
Managed by agentloop
 loop/merge-done
Managed by agentloop
 loop/merge-in-process
Managed by agentloop
 loop/plan
Add to run the built-in "plan" prompt; override at prompts/plan.md.
 loop/plan-done
Prompt "plan" finished successfully.
 loop/plan-in-process
Agent for the "plan" prompt is currently running on this issue.
No labels loop/code-done
Milestone
No items
No Milestone
Projects
Clear projects
No projects
Assignees
Clear assignees
guettlibot guettli
No Assignees
1 Participants
Notifications
Due Date
No due date set.
Dependencies

No dependencies set.

Reference: guettli/sharedinbox#552