feat: docker release workflow integration and branch setup

Author: milsman2

.github/workflows/cache-uv-build.yaml

@@ -13,7 +13,7 @@ jobs:
   build-cache:
     runs-on: ubuntu-latest
     env:
-      UV_VERSION: '0.9.27'
+      UV_VERSION: '0.9.28'
       PYTHON_VERSION: '3.13'
 
     steps:

.github/workflows/docker-build-and-scan.yaml

@@ -37,3 +37,17 @@ jobs:
           ignore-unfixed: true
           vuln-type: 'os,library'
           severity: 'CRITICAL,HIGH'
+      - name: Login to DockerHub
+        if: github.event_name == 'workflow_call'
+        uses: docker/login-action@v3
+        with:
+          username: ${{ secrets.DOCKERHUB_USERNAME }}
+          password: ${{ secrets.DOCKERHUB_TOKEN }}
+      - name: Push Docker image to DockerHub
+        if: github.event_name == 'workflow_call'
+        uses: docker/build-push-action@v6
+        with:
+          context: ${{ env.DOCKER_PATH_CONTEXT }}
+          file: ${{ env.DOCKER_BUILD_DOCKERFILE }}
+          push: true
+          tags: ${{ env.DOCKER_TAGS }}

.github/workflows/release.yaml

@@ -76,3 +76,12 @@ jobs:
             ~/.local/share/uv
             .venv
           key: uv-main-${{ env.UV_VERSION }}-${{ env.PYTHON_VERSION }}-${{ hashFiles('pyproject.toml', 'uv.lock') }}
+
+  docker-build-and-scan:
+    needs: Semantic-Release
+    uses: milsman2/python-app-template/.github/workflows/docker-build-and-scan.yaml@main
+    with:
+      DOCKER_PATH_CONTEXT: .
+      DOCKER_BUILD_DOCKERFILE: Dockerfile
+      DOCKER_LOAD_BOOL: true
+      DOCKER_TAGS: sample-python-app:${{ needs.Semantic-Release.outputs.tag }}