jackkoenig
commented
3 years ago I also went ahead and changed the secrets since, if there is a security flaw in docker/build-push-action@v1, I don't want the Access Token to leak out (and still be active) from the previous failed run on master.
Proximate cause of this PR is that I typoed the Docker Hub organization name, it's
ucbbar, notucb-bar. I also noticed that there are security warnings when usingdocker/build-push-action@v1so I updated todocker/build-push-action@v2. In the process, I figured we might as well build the Docker image in CI and only publish it on a push.~Note: at the moment this will push for pull requests. I have it this way for testing. The TODO in docker.yml needs to be resolved before merge~ Done, it worked.