---
kind: ConfigMap
apiVersion: v1
metadata:
  name: code
data:
  build.sh: |
    #!/bin/sh
    set -x

    docker buildx create --use --driver remote --name buildkit unix:///storage/buildkitd.sock

    cd /code
    docker buildx build -t example.com/image:dev .

  Dockerfile: |
    FROM alpine
    RUN apk add gcc
---
apiVersion: v1
kind: Pod
metadata:
  name: buildkitd
# see buildkit/docs/rootless.md for caveats of rootless mode
spec:
  terminationGracePeriodSeconds: 1
  restartPolicy: Never
  hostUsers: false
  containers:
    - name: buildkitd
      image: docker.io/moby/buildkit:v0.23.1
      args:
      - --root=/storage
      - --addr=unix:///storage/buildkitd.sock
      securityContext:
        privileged: true
      volumeMounts:
        - name: storage
          mountPath: /storage
    - name: docker-cli
      image: docker.io/docker:28-dind
      command: ["/bin/sh", "/code/build.sh"]
      volumeMounts:
        - name: storage
          mountPath: /storage
        - name: code
          mountPath: /code
  volumes:
    - name: storage
      emptyDir:
        sizeLimit: 10Gi
    - name: code
      configMap:
        name: code