🚀 (Post 6): CI/CD with Docker — Automating Builds, Tests & Deployment!

DevOps isn't complete without automation. Once you've containerized your app, it's time to automate everything from building and testing to deploying it across environments. This post dives into integrating Docker with CI/CD pipelines using tools like GitHub Actions, writing multi-stage Dockerfiles, and optimizing builds with caching strategies.

🧱 Docker in the DevOps Workflow

Here's how Docker fits into a CI/CD pipeline:

• 📦 Build reproducible environments with Dockerfile
• 🧪 Run unit/integration tests inside isolated containers
• 📤 Push tested, tagged images to registries (e.g., Docker Hub, GHCR)
• 🚀 Deploy to servers, Kubernetes, or cloud platforms

🐳 Multi-Stage Dockerfile: Build Once, Ship Clean

Multi-stage builds help you build and package your app efficiently by separating build dependencies from the final image. Here's a production-ready example for a Node.js app:

# Stage 1 — Build
FROM node:18-alpine as builder
WORKDIR /app
COPY package*.json ./
RUN npm ci
COPY . .
RUN npm run build

# Stage 2 — Production
FROM node:18-alpine
WORKDIR /app
COPY --from=builder /app/dist ./dist
COPY --from=builder /app/package*.json ./
RUN npm ci --only=production
CMD ["node", "dist/index.js"]

Why it matters: Final image is smaller, faster, and contains no unnecessary dev files.

🤖 GitHub Actions + Docker: Your CI/CD Pipeline

Let's walk through a full CI/CD setup using GitHub Actions.

📝 .github/workflows/docker-ci.yml

name: CI/CD with Docker

on:
  push:
    branches: [main]

jobs:
  build-test-deploy:
    runs-on: ubuntu-latest
    steps:
      - name: 📥 Checkout code
        uses: actions/checkout@v3

      - name: 🐳 Set up Docker
        uses: docker/setup-buildx-action@v2

      - name: 🔨 Build image
        run: docker build -t aelify/app:latest .

      - name: ✅ Run tests in container
        run: docker run --rm aelify/app:latest npm test

      - name: 🔐 Login to Docker Hub
        uses: docker/login-action@v2
        with:
          username: ${{ secrets.DOCKER_USERNAME }}
          password: ${{ secrets.DOCKER_PASSWORD }}

      - name: 🚀 Push to Docker Hub
        run: docker push aelify/app:latest

      - name: 🚢 Deploy (optional)
        run: ssh ${{ secrets.SSH_USER }}@${{ secrets.SERVER_IP }} \
             'docker pull aelify/app:latest && docker restart my-container'

🔐 Secrets like Docker credentials or SSH keys should be stored securely in GitHub Secrets.

🧪 Running Tests Inside Docker

Want to test your app exactly how it'll run in production? Docker is perfect:

docker build -t test-app .
docker run --rm test-app npm test

🔥 Tip: Include test dependencies only in the first stage of your Dockerfile.

🧠 Optimize Docker Builds with Caching

Here's a smart way to cache dependencies in Docker:

FROM node:18-alpine
WORKDIR /app
COPY package*.json ./
RUN npm ci
COPY . .

By copying package.json separately, Docker caches dependencies unless they change — drastically speeding up builds.

🏗️ GitLab CI Alternative (Bonus)

If you use GitLab, here's a similar pipeline:

build:
  image: docker:latest
  services:
    - docker:dind
  script:
    - docker build -t registry.gitlab.com/youruser/app:latest .
    - docker login -u "$CI_REGISTRY_USER" -p "$CI_REGISTRY_PASSWORD" $CI_REGISTRY
    - docker push registry.gitlab.com/youruser/app:latest

🔁 CI/CD Recap

• ⚙️ Automate everything: build, test, and ship
• 🧼 Use multi-stage builds to create lean production images
• 🛡 Secure secrets in your CI tool
• 🚀 Push to Docker Hub or a private registry
• 📈 Save time using dependency caching

Docker + CI/CD = shipping confidently and consistently. Whether you're deploying weekly or hourly, these tools let you move fast and stay reliable. Start small, automate relentlessly, and enjoy the ride. 🧪🚢💡

In our next post, we'll dive into 🔐 (Post 7): Securing Docker — Best Practices for Hardening Containers & Hosts!

— Blog by Aelify (ML2AI.com)