Roberto/pulse-libs
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
154e233d6d5c188c8ec670cc920621f974f5be2e
pulse-libs/skills/xcloud-docker-deploy/examples/custom-app-dockerfile.md
T
Pulse 22d9f5b21d feat: skill expansion — browser, security, SQL, files (16 skills total) 
Novas skills instaladas:
- openclaw-agent-browser   v1.0.0  CLI Chromium — navegação, login, screenshots, state
- skill-security-audit    v1.0.0  SAST scanning, prompt injection, secrets audit
- sql-toolkit             v1.0.0  PostgreSQL/MySQL/SQLite — schema, query, otimização
- file                    v1.0.0  Organização de arquivos por contexto
- file-summary            v1.0.0  Extração e resumo de PDFs, Word, Excel

Workspace expandido:
- TOOLS.md: +Browser automation, Security audit, SQL, File management
- AGENTS.md: +Linux Analyst section (comandos, logs, rede, scripts) + Full-stack strategy
- MEMORY.md: 16 skills indexadas, stack map, comandos Linux ref
- SESSION-STATE.md: atualizado com contexto completo
- lock.json: sincronizado com 16 skills instaladas
2026-05-19 20:51:05 -03:00

2.5 KiB
Raw Blame History

Example: Custom App with Dockerfile (Scenario A — Build-from-Source)

Original docker-compose.yml

services:
  app:
    build:
      context: .
      dockerfile: Dockerfile
    image: my-app:latest
    ports:
      - "8080:8080"
    environment:
      - NODE_ENV=production
      - SECRET_KEY=${SECRET_KEY}
    depends_on:
      - db

  db:
    image: postgres:15
    ports:
      - "5432:5432"
    environment:
      - POSTGRES_PASSWORD=${POSTGRES_PASSWORD}
      - POSTGRES_DB=myapp

Issues Detected

  • build: context: . — xCloud cannot build images
  • Database port 5432 exposed to host (security risk)

Fixed docker-compose.yml

services:
  app:
    image: ghcr.io/OWNER/my-app:latest
    ports:
      - "8080:8080"
    environment:
      - NODE_ENV=production
      - SECRET_KEY=${SECRET_KEY}
    depends_on:
      - db
    networks:
      - app-network

  db:
    image: postgres:15
    expose:
      - "5432"     # internal only — removed host port binding
    environment:
      - POSTGRES_PASSWORD=${POSTGRES_PASSWORD}
      - POSTGRES_DB=myapp
    networks:
      - app-network

networks:
  app-network:
    driver: bridge

.github/workflows/docker-build.yml

name: Build and Push Docker Image

on:
  push:
    branches: [main]

env:
  REGISTRY: ghcr.io
  IMAGE_NAME: my-app

jobs:
  build:
    runs-on: ubuntu-latest
    permissions:
      contents: read
      packages: write

    steps:
      - uses: actions/checkout@v4

      - name: Log in to GHCR
        uses: docker/login-action@v3
        with:
          registry: ghcr.io
          username: ${{ github.actor }}
          password: ${{ secrets.GITHUB_TOKEN }}

      - name: Build and push
        uses: docker/build-push-action@v5
        with:
          context: .
          push: true
          tags: |
            ghcr.io/${{ github.repository_owner }}/my-app:latest
            ghcr.io/${{ github.repository_owner }}/my-app:sha-${{ github.sha }}

      - name: Trigger xCloud deploy
        if: ${{ secrets.XCLOUD_DEPLOY_WEBHOOK != '' }}
        run: curl -X POST "${{ secrets.XCLOUD_DEPLOY_WEBHOOK }}"

.env.example

SECRET_KEY=
POSTGRES_PASSWORD=

xCloud Deploy Steps

  1. Push repo to GitHub — GitHub Actions builds and pushes image automatically
  2. Go to GitHub → Packages → make my-app package Public
  3. Add XCLOUD_DEPLOY_WEBHOOK secret in GitHub repo settings (from xCloud site → Deploy settings)
  4. Server → New Site → Custom Docker → connect repo
  5. Exposed port: 8080
  6. Env vars: SECRET_KEY, POSTGRES_PASSWORD
  7. Deploy
Reference in New Issue View Git Blame Copy Permalink