mirror of
https://github.com/BillyOutlast/rocm-automated.git
synced 2026-02-04 03:51:19 +01:00
b278808b05
Some checks failed
Daily ROCm Container Build (Pure Shell) / prepare (push) Successful in 15s
Daily ROCm Container Build (Pure Shell) / build-base-images (map[context:. dockerfile:Dockerfile.comfyui-rocm7.1 name:comfyui-rocm7.1]) (push) Failing after 0s
Daily ROCm Container Build (Pure Shell) / build-stable-diffusion-variants (gfx1030) (push) Failing after 1s
Daily ROCm Container Build (Pure Shell) / build-stable-diffusion-variants (gfx1100) (push) Failing after 2s
Daily ROCm Container Build (Pure Shell) / build-stable-diffusion-variants (gfx1101) (push) Failing after 2s
Daily ROCm Container Build (Pure Shell) / build-stable-diffusion-variants (gfx1150) (push) Failing after 1s
Daily ROCm Container Build (Pure Shell) / build-stable-diffusion-variants (gfx1151) (push) Failing after 2s
Daily ROCm Container Build (Pure Shell) / build-stable-diffusion-variants (gfx1200) (push) Failing after 1s
Daily ROCm Container Build (Pure Shell) / build-stable-diffusion-variants (gfx1201) (push) Failing after 1s
Daily ROCm Container Build (Pure Shell) / build-base-images (map[context:. dockerfile:Dockerfile.stable-diffusion.cpp-rocm7.1 name:stable-diffusion.cpp-rocm7.1]) (push) Failing after 17s
Daily ROCm Container Build (Pure Shell) / test-compose (push) Has been skipped
Daily ROCm Container Build (Pure Shell) / notify (push) Successful in 0s
Daily ROCm Container Build (Pure Shell) / cleanup (push) Failing after 12s
GitHub Actions CI/CD
This directory contains GitHub Actions workflows for automated building, testing, and releasing of the ROCm 7.1 container environment.
🔧 Workflows
1. Daily Build (daily-build.yml)
- Schedule: Runs daily at 02:00 UTC
- Purpose: Automated builds of all container images
- Triggers:
- Daily schedule
- Manual dispatch with options
- What it builds:
- Base images (ComfyUI, Stable Diffusion.cpp)
- GPU-specific variants for different AMD architectures
- Tests Docker Compose configuration
2. Release Build (release.yml)
- Triggers:
- Git tags matching
v*.*.* - Manual dispatch with version input
- Git tags matching
- Purpose: Production releases with proper versioning
- Features:
- Semantic versioning
- GitHub releases with changelogs
- Multi-architecture GPU support
- Docker Hub image publishing
3. Security Scan (security-scan.yml)
- Schedule: Weekly on Sundays at 03:00 UTC
- Purpose: Security and vulnerability scanning
- Includes:
- Dockerfile linting with Hadolint
- Vulnerability scanning with Trivy
- Base image update checking
- Security advisory monitoring
🔑 Required Secrets
Add these secrets in your GitHub repository settings:
| Secret | Description | Required For |
|---|---|---|
DOCKER_PASSWORD |
Docker Hub password/token | All workflows that push images |
🚀 Setup Instructions
-
Configure Docker Hub Access:
# Create a Docker Hub access token # Go to: https://hub.docker.com/settings/security # Add it as DOCKER_PASSWORD secret in GitHub -
Update Registry Settings:
- Edit the
REGISTRY_USERenvironment variable in workflow files - Change from
getterupto your Docker Hub username
- Edit the
-
Enable Workflows:
- Workflows are automatically enabled when you push them to your repository
- Manual workflows can be triggered from the Actions tab
📊 Build Matrix
Base Images
comfyui-rocm7.1- ComfyUI with ROCm 7.1 supportstable-diffusion.cpp-rocm7.1- Stable Diffusion with ROCm 7.1
GPU Architecture Variants
| GFX Architecture | GPU Series | Build Target |
|---|---|---|
gfx1150 |
RDNA 3.5 (Ryzen AI 9 HX 370) | stable-diffusion-cpp-gfx1150 |
gfx1151 |
RDNA 3.5 (Strix Point) | stable-diffusion-cpp-gfx1151 |
gfx1200 |
RDNA 4 (RX 9070 XT) | stable-diffusion-cpp-gfx1200 |
gfx1100 |
RDNA 3 (RX 7900 XTX/XT) | stable-diffusion-cpp-gfx1100 |
gfx1101 |
RDNA 3 (RX 7800/7700 XT) | stable-diffusion-cpp-gfx1101 |
gfx1030 |
RDNA 2 (RX 6000 series) | stable-diffusion-cpp-gfx1030 |
gfx1201 |
RDNA 4 (RX 9060/9070 XT) | stable-diffusion-cpp-gfx1201 |
🏷️ Image Tags
Daily Builds
latest- Latest daily buildYYYY-MM-DD- Date-specific builds<commit-sha>- Commit-specific builds
Releases
latest- Latest stable releasev1.2.3- Specific versionv1.2- Minor versionv1- Major version (for stable releases only)
🛠️ Manual Triggers
Daily Build Manual Run
# Via GitHub CLI
gh workflow run daily-build.yml \
-f push_images=true \
-f build_all=true
# Via GitHub UI
# Go to Actions > Daily ROCm Container Build > Run workflow
Release Manual Run
# Create a release
gh workflow run release.yml \
-f version=v1.0.0 \
-f create_release=true
Security Scan Manual Run
# Run security scan
gh workflow run security-scan.yml
📈 Monitoring
Build Status
- Check the Actions tab for workflow status
- Failed builds will show detailed logs
- Security scan results appear in the Security tab
Docker Hub
- Images are automatically pushed to Docker Hub
- Check pull counts and popularity metrics
- Monitor for automated security scans
🔍 Troubleshooting
Common Issues
-
Docker Hub Authentication Failed
- Verify
DOCKER_PASSWORDsecret is set - Check that the token has push permissions
- Ensure
REGISTRY_USERmatches your Docker Hub username
- Verify
-
Build Failures
- Check Dockerfile syntax
- Verify base image availability
- Review build logs for specific errors
-
Security Scan Failures
- Review Trivy scan results
- Update base images if vulnerabilities found
- Fix Hadolint warnings in Dockerfiles
Debug Commands
# Test workflows locally with act
act schedule -j build-base-images
# Validate Docker Compose
docker-compose config
# Test Dockerfile syntax
hadolint Dockerfiles/Dockerfile.comfyui-rocm7.1
📋 Maintenance
Regular Tasks
- Monitor workflow success rates
- Update base images when security patches are available
- Review and update GPU architecture matrix as new GPUs are released
- Update dependencies in Dockerfiles
Quarterly Reviews
- Assess build times and optimize if needed
- Review security scan results and trends
- Update workflow actions to latest versions
- Check for new GitHub Actions features that could improve the pipeline