.github/workflows: Migrate workflows to Blacksmith runners

.github/workflows/ci.yml

@@ -11,7 +11,7 @@ permissions: {}
 jobs:
   determine-image-tag:
     name: Determine Image Tag
-    runs-on: ubuntu-latest
+    runs-on: blacksmith-2vcpu-ubuntu-2404
     permissions:
       contents: read
     outputs:

.github/workflows/claude-code-review.yml

@@ -18,7 +18,7 @@ jobs:
     #   github.event.pull_request.user.login == 'new-developer' ||
     #   github.event.pull_request.author_association == 'FIRST_TIME_CONTRIBUTOR'
 
-    runs-on: ubuntu-latest
+    runs-on: blacksmith-4vcpu-ubuntu-2404
     permissions:
       contents: read
       pull-requests: read

.github/workflows/claude.yml

@@ -17,7 +17,7 @@ jobs:
       (github.event_name == 'pull_request_review_comment' && contains(github.event.comment.body, '@claude')) ||
       (github.event_name == 'pull_request_review' && contains(github.event.review.body, '@claude')) ||
       (github.event_name == 'issues' && (contains(github.event.issue.body, '@claude') || contains(github.event.issue.title, '@claude')))
-    runs-on: ubuntu-latest
+    runs-on: blacksmith-4vcpu-ubuntu-2404
     permissions:
       contents: read
       pull-requests: read

.github/workflows/dependabot-auto-fix.yml

@@ -12,7 +12,7 @@ permissions:
 jobs:
   tidy-and-verify:
     if: github.actor == 'dependabot[bot]'
-    runs-on: ubuntu-latest
+    runs-on: blacksmith-4vcpu-ubuntu-2404
     steps:
       - uses: actions/checkout@v6
         with:

.github/workflows/docker-build-push.yml

@@ -19,7 +19,7 @@
     name: Build ${{ matrix.app.name }}
     # skip building images for merge groups as they are already built on PRs and main
     if: github.event_name != 'merge_group'
-    runs-on: ubuntu-latest
+    runs-on: blacksmith-2vcpu-ubuntu-2404
     permissions:
       contents: read
       packages: write
@@ -30,8 +30,8 @@
       - name: Checkout code
         uses: actions/checkout@v6
 
-      - name: Set up Docker Buildx
-        uses: docker/setup-buildx-action@v3
+      - name: Setup Blacksmith Builder
+        uses: useblacksmith/setup-docker-builder@v1
 
       - name: Log in to GHCR
         uses: docker/login-action@v3
@@ -41,7 +41,7 @@
           password: ${{ secrets.GITHUB_TOKEN }}
 
       - name: Build and push ${{ matrix.app.name }} Docker image
-        uses: docker/build-push-action@v6
+        uses: useblacksmith/build-push-action@v2
         with:
           context: .
           file: ${{ matrix.app.dockerfile }}

.github/workflows/docker-tests.yml

@@ -20,7 +20,7 @@ jobs:
     permissions:
       contents: read
     name: Docker E2E Tests
-    runs-on: ubuntu-latest
+    runs-on: blacksmith-2vcpu-ubuntu-2404
     steps:
       - uses: actions/checkout@v6
       - name: set up go
@@ -37,7 +37,7 @@ jobs:
     name: Docker Upgrade E2E Tests
     permissions:
       contents: read
-    runs-on: ubuntu-latest
+    runs-on: blacksmith-2vcpu-ubuntu-2404
     steps:
       - uses: actions/checkout@v6
       - name: set up go

.github/workflows/docs_build.yml

@@ -13,7 +13,7 @@ on:
 
 jobs:
   docs_build:
-    runs-on: ubuntu-latest
+    runs-on: blacksmith-2vcpu-ubuntu-2404
     steps:
       - name: Checkout
         uses: actions/checkout@v6

.github/workflows/docs_deploy.yml

@@ -22,30 +22,30 @@
 jobs:
   # Build job
   build:
-    runs-on: ubuntu-latest
+    runs-on: blacksmith-2vcpu-ubuntu-2404
     steps:
       - name: Checkout
         uses: actions/checkout@v6
         with:
           fetch-depth: 0 # Not needed if lastUpdated is not enabled
       # - uses: pnpm/action-setup@v2 # Uncomment this if you're using pnpm
       - name: Setup Node
         uses: actions/setup-node@v6
         with:
           node-version: 20
           cache: yarn # or pnpm / npm
           cache-dependency-path: docs/yarn.lock
       - name: Setup Pages
         uses: actions/configure-pages@v5
       - name: Install dependencies
         run: yarn install # or pnpm install / npm ci
         working-directory: docs
       - name: Build with VitePress
         run: yarn build # or pnpm build / npm build
         working-directory: docs
       - name: Deploy to GitHub Pages
         uses: peaceiris/actions-gh-pages@v4
         with:
           github_token: ${{ secrets.PAT_DOCS }}
           publish_dir: ./docs/.vitepress/dist
           cname: ev.xyz

.github/workflows/docs_preview.yml

@@ -17,7 +17,7 @@ concurrency: preview-${{ github.ref }}
 jobs:
   deploy-preview:
     if: github.actor != 'dependabot[bot]'
-    runs-on: ubuntu-latest
+    runs-on: blacksmith-4vcpu-ubuntu-2404
     permissions: write-all
     steps:
       - name: Checkout

.github/workflows/ghcr-prune.yml

@@ -20,7 +20,7 @@ env:
 jobs:
   prune:
     name: Remove aged commit-hash tags
-    runs-on: ubuntu-latest
+    runs-on: blacksmith-4vcpu-ubuntu-2404
     strategy:
       fail-fast: false
       matrix:

.github/workflows/housekeeping.yml

@@ -25,7 +25,7 @@ jobs:
     # ignore dependabot PRs
     if: ${{ github.event.pull_request && github.actor != 'dependabot[bot]' }}
     name: Assign PR to creator
-    runs-on: ubuntu-latest
+    runs-on: blacksmith-4vcpu-ubuntu-2404
     permissions:
       issues: write
       pull-requests: write

.github/workflows/lint.yml

@@ -10,7 +10,7 @@ permissions:
 jobs:
   golangci-lint:
     name: golangci-lint
-    runs-on: ubuntu-latest
+    runs-on: blacksmith-4vcpu-ubuntu-2404
     steps:
       - uses: actions/checkout@v6
       - uses: actions/setup-go@v6
@@ -34,7 +34,7 @@ jobs:
         if: env.GIT_DIFF
 
   hadolint:
-    runs-on: ubuntu-latest
+    runs-on: blacksmith-4vcpu-ubuntu-2404
     steps:
       - uses: actions/checkout@v6
       - uses: hadolint/hadolint-action@v3.3.0
@@ -43,7 +43,7 @@ jobs:
           failure-threshold: error
 
   yamllint:
-    runs-on: ubuntu-latest
+    runs-on: blacksmith-4vcpu-ubuntu-2404
     steps:
       - uses: actions/checkout@v6
         with:
@@ -57,7 +57,7 @@ jobs:
         if: env.GIT_DIFF
 
   markdown-lint:
-    runs-on: ubuntu-latest
+    runs-on: blacksmith-4vcpu-ubuntu-2404
     steps:
       - uses: actions/checkout@v6
         with:
@@ -71,7 +71,7 @@ jobs:
 
   # Checks that the .goreleaser.yaml file is valid
   goreleaser-check:
-    runs-on: ubuntu-latest
+    runs-on: blacksmith-4vcpu-ubuntu-2404
     steps:
       - name: checkout
         uses: actions/checkout@v6

.github/workflows/proto.yml

@@ -8,7 +8,7 @@ permissions:
 
 jobs:
   buf-check:
-    runs-on: ubuntu-latest
+    runs-on: blacksmith-4vcpu-ubuntu-2404
     timeout-minutes: 5
     steps:
       - uses: actions/checkout@v6

.github/workflows/release.yml

@@ -14,7 +14,7 @@
 jobs:
   parse-tag:
     name: Parse Release Tag
-    runs-on: ubuntu-latest
+    runs-on: blacksmith-4vcpu-ubuntu-2404
     permissions:
       contents: read
     outputs:
@@ -69,16 +69,16 @@
   build-and-push:
     name: Build and Push Docker Image
     needs: parse-tag
-    runs-on: ubuntu-latest
+    runs-on: blacksmith-4vcpu-ubuntu-2404
     permissions:
       contents: read
       packages: write
     steps:
       - name: Checkout code
         uses: actions/checkout@v6
 
-      - name: Set up Docker Buildx
-        uses: docker/setup-buildx-action@v3
+      - name: Setup Blacksmith Builder
+        uses: useblacksmith/setup-docker-builder@v1
 
       - name: Log in to GHCR
         uses: docker/login-action@v3
@@ -88,7 +88,7 @@
           password: ${{ secrets.GITHUB_TOKEN }}
 
       - name: Build and push Docker image
-        uses: docker/build-push-action@v6
+        uses: useblacksmith/build-push-action@v2
         with:
           context: .
           file: ${{ needs.parse-tag.outputs.dockerfile }}

.github/workflows/rust-ci-status.yml

@@ -9,7 +9,7 @@ on:
 jobs:
   status:
     name: Update CI Status
-    runs-on: ubuntu-latest
+    runs-on: blacksmith-4vcpu-ubuntu-2404
     permissions:
       contents: read
     if: github.event.workflow_run.conclusion != 'skipped'

.github/workflows/rust-lint.yml

@@ -16,7 +16,7 @@ on:
 jobs:
   fmt:
     name: Rustfmt
-    runs-on: ubuntu-latest
+    runs-on: blacksmith-4vcpu-ubuntu-2404
     steps:
       - name: Checkout code
         uses: actions/checkout@v6
@@ -31,7 +31,7 @@ jobs:
 
   clippy:
     name: Clippy
-    runs-on: ubuntu-latest
+    runs-on: blacksmith-4vcpu-ubuntu-2404
     permissions:
       contents: read
     steps:
@@ -67,7 +67,7 @@ jobs:
 
   audit:
     name: Security Audit
-    runs-on: ubuntu-latest
+    runs-on: blacksmith-4vcpu-ubuntu-2404
     steps:
       - name: Checkout code
         uses: actions/checkout@v6
@@ -79,7 +79,7 @@ jobs:
 
   docs:
     name: Documentation
-    runs-on: ubuntu-latest
+    runs-on: blacksmith-4vcpu-ubuntu-2404
     steps:
       - name: Checkout code
         uses: actions/checkout@v6

.github/workflows/rust-publish.yml

@@ -15,7 +15,7 @@ on:
 jobs:
   publish:
     name: Publish to crates.io
-    runs-on: ubuntu-latest
+    runs-on: blacksmith-4vcpu-ubuntu-2404
     steps:
       - name: Checkout code
         uses: actions/checkout@v6

.github/workflows/rust-test.yml

@@ -24,7 +24,7 @@ on:
 jobs:
   test:
     name: Test Rust Client
-    runs-on: ubuntu-latest
+    runs-on: blacksmith-4vcpu-ubuntu-2404
     strategy:
       matrix:
         rust:
@@ -58,7 +58,7 @@ jobs:
 
   coverage:
     name: Code Coverage
-    runs-on: ubuntu-latest
+    runs-on: blacksmith-4vcpu-ubuntu-2404
     if: github.event_name == 'pull_request'
     steps:
       - name: Checkout code

.github/workflows/semantic-pull-request.yml

@@ -13,7 +13,7 @@ permissions:
 jobs:
   main:
     name: conventional-commit-pr-title
-    runs-on: ubuntu-latest
+    runs-on: blacksmith-4vcpu-ubuntu-2404
     steps:
       - uses: amannn/action-semantic-pull-request@v6
         env:

.github/workflows/test.yml

@@ -72,7 +72,7 @@
   e2e-tests:
     name: Run E2E System Tests
     needs: build_all-apps
-    runs-on: ubuntu-latest
+    runs-on: blacksmith-2vcpu-ubuntu-2404
     permissions:
       contents: read
       packages: read
@@ -82,17 +82,15 @@
         uses: actions/setup-go@v6
         with:
           go-version-file: ./go.mod
-      - name: Set up Docker Buildx
-        uses: docker/setup-buildx-action@v3
+      - name: Setup Blacksmith Builder
+        uses: useblacksmith/setup-docker-builder@v1
       - name: Build evstack:local-dev (cached)
-        uses: docker/build-push-action@v6
+        uses: useblacksmith/build-push-action@v2
         with:
           context: .
           file: apps/testapp/Dockerfile
           load: true
           tags: evstack:local-dev
-          cache-from: type=gha
-          cache-to: type=gha,mode=max
       - name: E2E Tests
         run: make test-e2e
 

.github/workflows/update-onboarding-skill.yml

@@ -8,7 +8,7 @@ name: Update Onboarding Skill
 
 jobs:
   update-skill:
-    runs-on: ubuntu-latest
+    runs-on: blacksmith-4vcpu-ubuntu-2404
     permissions:
       contents: write
       pull-requests: write