GitHub Actions
Dagger provides a GitHub Action that can be used in any GitHub Actions workflow to call one or more Dagger Functions on specific events, such as a new commit.
Dagger has also partnered with Depot to provide managed, Dagger Powered GitHub Actions runners. These runners, which serve as drop-in replacements for GitHub's own runners, come with Dagger pre-installed and pre-configured to best practices, automatic persistent layer caching, and multi-architecture support. They make it faster and easier to run Dagger pipelines in GitHub repositories.
How it works
Depending on whether you choose a standard GitHub Actions runner or a Dagger Powered Depot GitHub Actions Runner, here's how it works.
- GitHub
- Depot
When running a CI pipeline with Dagger using a standard GitHub Actions runner, the general workflow looks like this:
- GitHub receives a workflow trigger based on a repository event.
- GitHub begins processing the jobs and steps in the workflow.
- GitHub finds the "Dagger for GitHub" action and passes control to it.
- The "Dagger for GitHub" action calls the Dagger CLI with the specified sub-command, module, function name, and arguments.
- The Dagger CLI attempts to find an existing Dagger Engine or spins up a new one inside the GitHub Actions runner.
- The Dagger CLI executes the specified sub-command and sends telemetry to Dagger Cloud if the
DAGGER_CLOUD_TOKENenvironment variable is set. - The workflow completes with success or failure. Logs appear in GitHub as usual.
When running a CI pipeline on a Dagger Powered Depot GitHub Actions Runner, the general workflow looks like this:
- GitHub emits a webhook event which triggers a job in a GitHub Actions workflow
- Depot receives this event, processes it, and launches an isolated Depot GitHub Actions Runner.
- Each Depot GitHub Actions Runner is automatically connected to an already running Dagger Engine (this exists outside of the Depot GitHub Actions Runner).
- The external Dagger Engine comes with persistent caching pre-configured.
- The Depot GitHub Actions Runner has the Dagger CLI pre-installed.
- The Dagger CLI running inside the Depot GitHub Actions Runner gets automatically connected to Dagger Cloud.
- The Dagger CLI is also pre-configured to connect to the external Dagger Engine with persistent caching
- The "Dagger for GitHub" GitHub Action calls the Dagger CLI with the specified sub-command, module, function name, and arguments.
- The Dagger CLI executes the specified sub-command and sends telemetry to Dagger Cloud.
- The workflow completes with success or failure. Logs appear in GitHub as usual. They also appear in Dagger Cloud.
Prerequisites
- GitHub
- Depot
- A GitHub repository
- A GitHub repository in a GitHub organization
- A Depot account and organization
- The Depot organization connected to the GitHub organization
Examples
- GitHub
- Depot
The following example demonstrates how to call a Dagger Function on a standard GitHub runner in a GitHub Actions workflow.
name: dagger
on:
push:
branches: [main]
jobs:
hello:
name: hello
runs-on: ubuntu-latest
steps:
- name: Call Dagger Function
uses: dagger/dagger-for-github@v7
with:
version: "latest"
verb: call
module: github.com/shykes/daggerverse/hello@v0.1.2
args: hello --greeting="bonjour" --name="monde"
# assumes the Dagger Cloud token is in
# a repository secret named DAGGER_CLOUD_TOKEN
# set via the GitHub UI/CLI
cloud-token: ${{ secrets.DAGGER_CLOUD_TOKEN }}
The following is a more complex example demonstrating how to create a GitHub Actions workflow that checks out source code, calls a Dagger Function to test the project, and then calls another Dagger Function to build and publish a container image of the project. This example uses a simple Go application and assumes that you have already forked it in your own GitHub repository.
name: dagger
on:
push:
branches: [main]
jobs:
test:
name: test
runs-on: ubuntu-latest
steps:
- name: Checkout
uses: actions/checkout@v4
- name: Test
uses: dagger/dagger-for-github@v7
with:
version: "latest"
verb: call
module: github.com/kpenfound/dagger-modules/golang@v0.2.0
args: test --source=.
# assumes the Dagger Cloud token is in
# a repository secret named DAGGER_CLOUD_TOKEN
# set via the GitHub UI/CLI
cloud-token: ${{ secrets.DAGGER_CLOUD_TOKEN }}
build:
name: build
runs-on: ubuntu-latest
needs: test
steps:
- name: Checkout
uses: actions/checkout@v4
- name: Call Dagger Function
uses: dagger/dagger-for-github@v7
with:
version: "latest"
verb: call
module: github.com/kpenfound/dagger-modules/golang@v0.2.0
args: build-container --source=. --args=. publish --address=ttl.sh/my-app-$RANDOM
# assumes the Dagger Cloud token is in
# a repository secret named DAGGER_CLOUD_TOKEN
# set via the GitHub UI/CLI
cloud-token: ${{ secrets.DAGGER_CLOUD_TOKEN }}
More information is available in the Dagger for GitHub page.
The following example demonstrates how to call a Dagger Function on a Dagger Powered Depot runner in a GitHub Actions workflow. The runs-on clause specifies the runner and Dagger versions.
name: dagger
on:
push:
branches: [main]
jobs:
hello:
name: hello
runs-on: depot-ubuntu-24.04,dagger=0.15.2
steps:
- name: Checkout
uses: actions/checkout@v4
- name: Call Dagger Function
run: dagger -m github.com/shykes/daggerverse/hello@v0.3.0 call hello --greeting="bonjour" --name="monde"
The following is a more complex example demonstrating how to create a GitHub Actions workflow that checks out source code, calls a Dagger Function to test the project, and then calls another Dagger Function to build and publish a container image of the project. This example uses a simple Go application and assumes that you have already forked it in your own GitHub repository.
name: dagger
on:
push:
branches: [main]
jobs:
test:
name: test
runs-on: depot-ubuntu-24.04,dagger=0.15.2
steps:
- name: Checkout
uses: actions/checkout@v4
- name: Test
run: dagger -m github.com/kpenfound/dagger-modules/golang@v0.2.1 call test --source=.
build:
name: build
runs-on: depot-ubuntu-24.04,dagger=0.15.2
needs: test
steps:
- name: Checkout
uses: actions/checkout@v4
- name: Build
run: dagger -m github.com/kpenfound/dagger-modules/golang@v0.2.1 call build-container --source=. --args=. publish --address=ttl.sh/my-app-$RANDOM
Always ensure that the same Dagger versions are specified in the runs-on and version clauses of the workflow definition.
More information is available in the Dagger for GitHub page and in the Depot documentation.
SSH configuration
When using SSH keys in GitHub Actions, ensure proper SSH agent setup:
- name: Set up SSH
run: |
eval "$(ssh-agent -s)"
ssh-add - <<< '${{ secrets.SSH_PRIVATE_KEY }}'
Replace ${{ secrets.SSH_PRIVATE_KEY }} with your provider secret containing the private key.
Resources
Below are some resources from the Dagger community that may help as well. If you have any questions about additional ways to use GitHub with Dagger, join our Discord and ask your questions in our GitHub channel.
- Video: Boost Dagger Performance on GitHub Actions with Depot: This video demonstrates how to run your Dagger pipelines on Depot's Dagger Powered runners.
- Video: Set up Dagger Cloud with Depot: This video provides a step-by-step walkthrough of connecting Dagger Cloud to Depot and GitHub Actions.
About GitHub
GitHub is a popular Web-based platform used for version control and collaboration. It allows developers to store and manage their code in repositories, track changes over time, and collaborate with other developers on projects.
About Depot
Depot is a build acceleration platform focused on making builds more efficient and performant.