Build Caddy #8

	name: Build Caddy

	env:
	TZ: Asia/Shanghai

	on:
	schedule:
	- cron: '0 12 * * 6'
	push:
	branches:
	- master
	jobs:
	build:
	name: build caddy image
	runs-on: ubuntu-latest
	steps:
	- uses: actions/checkout@v4
	- name: Setup Go
	uses: actions/setup-go@v5
	with:
	go-version: ${{ env.GO_VERSION }}
	check-latest: true
	- name: install task
	run: \|
	echo "install task"
	go install github.com/go-task/task/v3/cmd/task@latest
	- name: Set up QEMU
	uses: docker/setup-qemu-action@v3
	- name: Set up Docker Buildx
	uses: docker/setup-buildx-action@v3
	- name: Login GHCR
	uses: docker/login-action@v3
	with:
	registry: ghcr.io
	username: ${{ github.actor }}
	password: ${{ secrets.GHCRIO }}
	- name: Login DockerHub
	uses: docker/login-action@v3
	with:
	username: ${{ secrets.DOCKER_USERNAME }}
	password: ${{ secrets.DOCKER_PASSWORD }}
	# - name: Build caddy
	# uses: docker/build-push-action@v6
	# with:
	# context: caddy
	# platforms: linux/amd64,linux/arm64
	# push: true
	# pull: true
	# tags: \|
	# ghcr.io/ysicing/caddy
	# ysicing/caddy
	# ttl.sh/ysicing/caddy
	- name: build caddy
	run: \|
	task caddy
	- name: Trivy vulnerability scanner caddy
	uses: aquasecurity/trivy-action@master
	with:
	image-ref: 'ghcr.io/ysicing/caddy2'
	format: 'github'
	ignore-unfixed: true
	vuln-type: 'os,library'
	severity: 'CRITICAL,HIGH'

Provide feedback