CI Improvements for testing images

[antonym]

• Drop forced chown during copy
• Bumping to latest Alpine
• Adding PR Template

[github-actions]

🚀 Test Image Built Successfully!

Your PR test images have been published and are ready for testing:

Docker Hub

docker pull netbootxyz/netbootxyz:pr-116

GitHub Container Registry

docker pull ghcr.io/netbootxyz/netbootxyz:pr-116

Quick Test Commands

Standard Docker:

docker run -d \
  --name netbootxyz-test \
  -e PUID=1000 \
  -e PGID=1000 \
  -p 3000:3000 \
  -p 69:69/udp \
  -p 8080:80 \
  -v /local/path/config:/config \
  netbootxyz/netbootxyz:pr-116

Rootless Podman (with NFS):

podman run -d \
  --name netbootxyz-test \
  -e PUID=1000 \
  -e PGID=1000 \
  -p 3000:3000 \
  -p 69:69/udp \
  -p 8080:80 \
  -v /nfs/path/config:/config \
  netbootxyz/netbootxyz:pr-116

Platforms

• ✅ linux/amd64
• ✅ linux/arm64

Check Logs

docker logs -f netbootxyz-test

---

📦 SHA: de420f89f34e4e5e0b83d5fd0b656902fba150d3
🏷️ Webapp Version: 0.7.6

[github-actions]

🚀 Test Image Built Successfully!

Your PR test images have been published and are ready for testing:

Docker Hub

docker pull netbootxyz/netbootxyz:pr-116

GitHub Container Registry

docker pull ghcr.io/netbootxyz/netbootxyz:pr-116

Quick Test Commands

Standard Docker:

docker run -d \
  --name netbootxyz-test \
  -e PUID=1000 \
  -e PGID=1000 \
  -p 3000:3000 \
  -p 69:69/udp \
  -p 8080:80 \
  -v /local/path/config:/config \
  netbootxyz/netbootxyz:pr-116

Platforms

• ✅ linux/amd64
• ✅ linux/arm64

Check Logs

docker logs -f netbootxyz-test

---

📦 SHA: b221c25aa31178f0f4249107c4c88fb5385895d6
🏷️ Webapp Version: 0.7.6

[Copilot]

Pull request overview

This PR enhances the CI/CD pipeline for building and testing Docker images with improved workflows and testing capabilities.

• Adds workflow_dispatch support with custom tag suffixes for manual test image builds
• Removes forced chown during COPY operation and updates Alpine base image initialization
• Introduces a comprehensive PR template with testing checklists and environment details

Reviewed changes

Copilot reviewed 3 out of 3 changed files in this pull request and generated 2 comments.

File	Description
Dockerfile	Adds Alpine baselayout initialization and removes --chown flag from COPY operation for better compatibility
.github/workflows/build.yml	Extends build workflow to support both PR and manual dispatch events, adds automated PR commenting with test instructions, and modifies Trivy scanner configuration
.github/pull_request_template.md	New template providing structured sections for PR description, testing environments, platforms, and checklists

Comments suppressed due to low confidence (1)

Dockerfile:57

• The package busybox is installed twice - once on line 53 and again on line 57. This is redundant and should be removed from one of these locations (likely line 57 since it's already being installed with alpine-baselayout on line 53).

RUN apk --initdb add --no-cache alpine-baselayout busybox
RUN apk add --no-cache \
    # Core utilities
    bash \
    busybox \

---

💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.

[Copilot]

[nitpick] The step name "Build and push PR test image" is misleading as this step now handles both pull request and workflow_dispatch events (for test images). Consider renaming to something more generic like "Build and push test image".

Suggested change

	- name: Build and push PR test image
	- name: Build and push test image

[Copilot]

Changing the Trivy exit-code from '1' to '0' means that the workflow will no longer fail when CRITICAL or HIGH severity vulnerabilities are found. This significantly weakens security posture for test images. Consider if this change is intentional, or if there should be a conditional exit-code based on the event type (e.g., fail for PRs but warn for manual dispatches).