<h2 id="%E3%82%B7%E3%82%B9%E3%83%86%E3%83%A0%E6%A6%82%E8%A6%81" data-line="0" class="code-line">
<a class="header-anchor-link" href="#%E3%82%B7%E3%82%B9%E3%83%86%E3%83%A0%E6%A6%82%E8%A6%81" aria-hidden="true"></a> システム概要</h2>
<h3 id="%E3%82%A4%E3%83%99%E3%83%B3%E3%83%88%E3%81%AE%E3%82%B7%E3%83%BC%E3%82%B1%E3%83%B3%E3%82%B9%E5%9B%B3" data-line="1" class="code-line">
<a class="header-anchor-link" href="#%E3%82%A4%E3%83%99%E3%83%B3%E3%83%88%E3%81%AE%E3%82%B7%E3%83%BC%E3%82%B1%E3%83%B3%E3%82%B9%E5%9B%B3" aria-hidden="true"></a> イベントのシーケンス図</h3>
<p data-line="2" class="code-line">GitHubのリポジトリと更新方法<br>
Claude Code等も含む（がこちらは1回目）</p>
<p data-line="5" class="code-line">miyabi-Gでのテストはワークフローとは一体にしない➡KAMUI OS駆動<br>
DockerHub</p>
<p data-line="8" class="code-line">VibeCodeHPC core miyabi-GへDesktopCommander接続し、現地でsingularity build<br>
テスト（シングルノードとマルチノード両方。簡単なモデルで）<br>
☑ installするコードも配布？<br>
Singularity Hubでも sif?配布</p>
<p data-line="13" class="code-line">命名規則をしっかり特にms-swiftのバージョンに注意<br>
となるとprivateリポ ☆☆<br>
publicでgitignoreで制御？ ☆<br>
基本的にはvllm駆動(vllmの最新安定nightlyリリース)次いで ms-swiftの最新版リリース駆動</p>
<h3 id="%E6%96%B9%E9%87%9D" data-line="18" class="code-line">
<a class="header-anchor-link" href="#%E6%96%B9%E9%87%9D" aria-hidden="true"></a> 方針</h3>
<p data-line="19" class="code-line">ここに2025年6月の前例がある(ほぼこれ)<br style="display:none">
<span class="embed-block zenn-embedded zenn-embedded-card"><iframe id="zenn-embedded__f09b532934478" src="https://embed.zenn.studio/card#zenn-embedded__f09b532934478" data-content="https%3A%2F%2Fqiita.com%2F_kei_s%2Fitems%2Fd62da133e0edb4048519" frameborder="0" scrolling="no" loading="lazy"></iframe></span><a href="https://qiita.com/_kei_s/items/d62da133e0edb4048519" style="display:none" target="_blank" rel="nofollow noopener noreferrer">https://qiita.com/_kei_s/items/d62da133e0edb4048519</a></p>
<h3 id="todo" data-line="22" class="code-line">
<a class="header-anchor-link" href="#todo" aria-hidden="true"></a> ToDo</h3>
<p data-line="23" class="code-line">実際にprivateのGitHubのWorkflowをpush<br>
VibeCodeHPC式で手元からmiyabi-GにSSH接続確立<br>
DockerHubをpullしてmiyabi-Gでbuild<br>
並列して例のスクリプトで軽めのLLMをダウンロード<br>
実際に動くか検証</p>
<h3 id="todo%E3%82%B5%E3%83%96%EF%BC%88%E6%99%82%E9%96%93%E3%81%8C%E3%81%82%E3%81%A3%E3%81%9F%E3%82%89%E3%81%A7ok%EF%BC%89" data-line="29" class="code-line">
<a class="header-anchor-link" href="#todo%E3%82%B5%E3%83%96%EF%BC%88%E6%99%82%E9%96%93%E3%81%8C%E3%81%82%E3%81%A3%E3%81%9F%E3%82%89%E3%81%A7ok%EF%BC%89" aria-hidden="true"></a> ToDoサブ（時間があったらでOK）</h3>
<p data-line="30" class="code-line">AWS公式MCPに含まれる<br>
AWS Diagram MCP Serverで構成図作成</p>
<p data-line="33" class="code-line">Claude Code(Claude 4.5 Opus)<br>
Codex(GPT-Codex-5.1-max)<br>
Gemini CLI(Gemini 3.0 pro)<br>
でAIコンペ</p>
<h2 id="%E5%8F%82%E8%80%83%E8%B3%87%E6%96%99" data-line="38" class="code-line">
<a class="header-anchor-link" href="#%E5%8F%82%E8%80%83%E8%B3%87%E6%96%99" aria-hidden="true"></a> 参考資料</h2>
<p data-line="39" class="code-line"><img src="https://storage.googleapis.com/zenn-user-upload/b85959228f4b-20251126.png" alt="AWS CodeBuildのlogo" class="md-img" loading="lazy"></p>
<h3 id="%E8%A3%9C%E8%B6%B3%E7%9F%A5%E8%AD%981-codebuild-%E3%81%AE-docker-server%E6%A9%9F%E8%83%BD" data-line="40" class="code-line">
<a class="header-anchor-link" href="#%E8%A3%9C%E8%B6%B3%E7%9F%A5%E8%AD%981-codebuild-%E3%81%AE-docker-server%E6%A9%9F%E8%83%BD" aria-hidden="true"></a> 補足知識1 CodeBuild の Docker Server機能</h3>
<p data-line="41" class="code-line"><span class="embed-block zenn-embedded zenn-embedded-card"><iframe id="zenn-embedded__135b388598d02" src="https://embed.zenn.studio/card#zenn-embedded__135b388598d02" data-content="https%3A%2F%2Fdev.classmethod.jp%2Farticles%2Faws-codebuild-remote-docker-servers%2F" frameborder="0" scrolling="no" loading="lazy"></iframe></span><a href="https://dev.classmethod.jp/articles/aws-codebuild-remote-docker-servers/" style="display:none" target="_blank" rel="nofollow noopener noreferrer">https://dev.classmethod.jp/articles/aws-codebuild-remote-docker-servers/</a><br style="display:none">
Docker Server<br>
インスタンスタイプ	メモリ	CPU	1秒あたりの料金<br>
arm1.2xlarge	128 GiB	4	$0.00118</p>
<p data-line="46" class="code-line"><span class="embed-block zenn-embedded zenn-embedded-card"><iframe id="zenn-embedded__a9306495e0fdb" src="https://embed.zenn.studio/card#zenn-embedded__a9306495e0fdb" data-content="https%3A%2F%2Fblog.mmmcorp.co.jp%2F2025%2F05%2F28%2Fcode-build-docker-server%2F" frameborder="0" scrolling="no" loading="lazy"></iframe></span><a href="https://blog.mmmcorp.co.jp/2025/05/28/code-build-docker-server/" style="display:none" target="_blank" rel="nofollow noopener noreferrer">https://blog.mmmcorp.co.jp/2025/05/28/code-build-docker-server/</a></p>
<h3 id="%E8%A3%9C%E8%B6%B3%E7%9F%A5%E8%AD%982-codebuild-%E3%81%AE-github-actions-self-hosted-runner%E5%AF%BE%E5%BF%9C" data-line="48" class="code-line">
<a class="header-anchor-link" href="#%E8%A3%9C%E8%B6%B3%E7%9F%A5%E8%AD%982-codebuild-%E3%81%AE-github-actions-self-hosted-runner%E5%AF%BE%E5%BF%9C" aria-hidden="true"></a> 補足知識2 CodeBuild の GitHub Actions Self-Hosted Runner対応</h3>
<p data-line="49" class="code-line"><span class="embed-block zenn-embedded zenn-embedded-card"><iframe id="zenn-embedded__e59018bff6336" src="https://embed.zenn.studio/card#zenn-embedded__e59018bff6336" data-content="https%3A%2F%2Fdev.classmethod.jp%2Farticles%2Faws-codebuild-hosted-github-actions-runner-vpc%2F" frameborder="0" scrolling="no" loading="lazy"></iframe></span><a href="https://dev.classmethod.jp/articles/aws-codebuild-hosted-github-actions-runner-vpc/" style="display:none" target="_blank" rel="nofollow noopener noreferrer">https://dev.classmethod.jp/articles/aws-codebuild-hosted-github-actions-runner-vpc/</a></p>
<p data-line="51" class="code-line"><span class="embed-block zenn-embedded zenn-embedded-card"><iframe id="zenn-embedded__3be76eee8e695" src="https://embed.zenn.studio/card#zenn-embedded__3be76eee8e695" data-content="https%3A%2F%2Fzenn.dev%2Fcybozu_ept%2Farticles%2Fproductivity-weekly-20240501" frameborder="0" scrolling="no" loading="lazy"></iframe></span><a href="https://zenn.dev/cybozu_ept/articles/productivity-weekly-20240501" style="display:none" target="_blank">https://zenn.dev/cybozu_ept/articles/productivity-weekly-20240501</a></p>
<div class="code-block-container"><pre><code class="code-line" data-line="52">個人的には複数リポジトリをまたいでセルフホストランナーをオーケストレーションできる既存ツール、actions/actions-runner-controller や philips-labs/terraform-aws-github-runner の代替にできそうかどうかが気になっていました。

結論としては、1 リポジトリごとに CodeBuild プロジェクトを作成する必要があったり、GitHub への認証方法に OAuth Apps か Personal Access Token しか使えなかったりと、まだまだ単一プロジェクト内でしか利用シーンは見出せないかなという印象でした。

今後に期待したいです。
</code></pre></div><p data-line="59" class="code-line">2024-05-01の上記の記載が改善され、複数リポジトリを跨いだあれができるかが重要？<br>
➡よく考えると、そうでもないかも<br>
vllmはGitHubではなく既存のDockerHubイメージをpull</p>
<p data-line="63" class="code-line"><a href="https://hub.docker.com/layers/vllm/vllm-openai/v0.11.2-aarch64/" target="_blank" rel="nofollow noopener noreferrer">https://hub.docker.com/layers/vllm/vllm-openai/v0.11.2-aarch64/</a> が最新</p>
<h3 id="%E3%82%BB%E3%82%AD%E3%83%A5%E3%83%AA%E3%83%86%E3%82%A3%E3%81%AE%E8%A6%B3%E7%82%B9" data-line="66" class="code-line">
<a class="header-anchor-link" href="#%E3%82%BB%E3%82%AD%E3%83%A5%E3%83%AA%E3%83%86%E3%82%A3%E3%81%AE%E8%A6%B3%E7%82%B9" aria-hidden="true"></a> セキュリティの観点</h3>
<p data-line="67" class="code-line"><span class="embed-block zenn-embedded zenn-embedded-card"><iframe id="zenn-embedded__8df680a703338" src="https://embed.zenn.studio/card#zenn-embedded__8df680a703338" data-content="https%3A%2F%2Faws.amazon.com%2Fjp%2Fblogs%2Fnews%2Fimplementing-defense-security-for-aws-codebuild-pipelines%2F" frameborder="0" scrolling="no" loading="lazy"></iframe></span><a href="https://aws.amazon.com/jp/blogs/news/implementing-defense-security-for-aws-codebuild-pipelines/" style="display:none" target="_blank" rel="nofollow noopener noreferrer">https://aws.amazon.com/jp/blogs/news/implementing-defense-security-for-aws-codebuild-pipelines/</a><br style="display:none">
『AWSコンテナ設計・構築[本格]入門』<br>
Trivyやdockleによるコンテナの脆弱性スキャンをCodeBuildに入れる<br>
（docker build後 dockerhub登録前）</p>
<p data-line="72" class="code-line">EKSではHelmチャートでSysdigRegistry Scannerもある<br style="display:none">
<span class="embed-block zenn-embedded zenn-embedded-card"><iframe id="zenn-embedded__ff521092874be" src="https://embed.zenn.studio/card#zenn-embedded__ff521092874be" data-content="https%3A%2F%2Fspeakerdeck.com%2Ftkikuchi%2Fbatutichu-li-woekskaracodebuildwoshi-tutagithub-self-hosted-runnernibian-geng-sitahua" frameborder="0" scrolling="no" loading="lazy"></iframe></span><a href="https://speakerdeck.com/tkikuchi/batutichu-li-woekskaracodebuildwoshi-tutagithub-self-hosted-runnernibian-geng-sitahua" style="display:none" target="_blank" rel="nofollow noopener noreferrer">https://speakerdeck.com/tkikuchi/batutichu-li-woekskaracodebuildwoshi-tutagithub-self-hosted-runnernibian-geng-sitahua</a></p>
<p data-line="75" class="code-line"><img src="https://storage.googleapis.com/zenn-user-upload/ef626e7f687f-20251128.png" alt="" class="md-img" loading="lazy"></p>
<h2 id="github-actions%E5%91%A8%E8%BE%BA%E3%81%AE%E8%A3%9C%E8%B6%B3%E6%83%85%E5%A0%B1" data-line="77" class="code-line">
<a class="header-anchor-link" href="#github-actions%E5%91%A8%E8%BE%BA%E3%81%AE%E8%A3%9C%E8%B6%B3%E6%83%85%E5%A0%B1" aria-hidden="true"></a> GitHub Actions周辺の補足情報</h2>
<h3 id="github-actions%E3%81%AEworkflow%E3%81%ABclaude-code%E3%82%92%E7%B5%84%E3%81%BF%E8%BE%BC%E3%82%80" data-line="78" class="code-line">
<a class="header-anchor-link" href="#github-actions%E3%81%AEworkflow%E3%81%ABclaude-code%E3%82%92%E7%B5%84%E3%81%BF%E8%BE%BC%E3%82%80" aria-hidden="true"></a> GitHub ActionsのWorkflowにClaude Codeを組み込む</h3>
<p data-line="80" class="code-line"><span class="embed-block zenn-embedded zenn-embedded-card"><iframe id="zenn-embedded__ced54178e3d04" src="https://embed.zenn.studio/card#zenn-embedded__ced54178e3d04" data-content="https%3A%2F%2Fdev.classmethod.jp%2Farticles%2Fclaude-code-github-actions-setup-terraform-mcp-server%2F" frameborder="0" scrolling="no" loading="lazy"></iframe></span><a href="https://dev.classmethod.jp/articles/claude-code-github-actions-setup-terraform-mcp-server/" style="display:none" target="_blank" rel="nofollow noopener noreferrer">https://dev.classmethod.jp/articles/claude-code-github-actions-setup-terraform-mcp-server/</a></p>
<p data-line="82" class="code-line">GitHub Actionのワークフローの一部をローカルで実行する方法<br>
➡ここでKAMUI等の定額CLIオーケストレータに繋ぐ手もなくはない？<br style="display:none">
<span class="embed-block zenn-embedded zenn-embedded-card"><iframe id="zenn-embedded__0dbe6a787246c" src="https://embed.zenn.studio/card#zenn-embedded__0dbe6a787246c" data-content="https%3A%2F%2Fzenn.dev%2Fakasan%2Farticles%2F6392d28e0e02f0" frameborder="0" scrolling="no" loading="lazy"></iframe></span><a href="https://zenn.dev/akasan/articles/6392d28e0e02f0" style="display:none" target="_blank">https://zenn.dev/akasan/articles/6392d28e0e02f0</a></p>
<p data-line="86" class="code-line">Self-HostedをMacに差し替えれるようにしておきたい<br style="display:none">
<span class="embed-block zenn-embedded zenn-embedded-card"><iframe id="zenn-embedded__55db612d60573" src="https://embed.zenn.studio/card#zenn-embedded__55db612d60573" data-content="https%3A%2F%2Fzenn.dev%2Fruwatana%2Farticles%2F2a3850f014a512" frameborder="0" scrolling="no" loading="lazy"></iframe></span><a href="https://zenn.dev/ruwatana/articles/2a3850f014a512" style="display:none" target="_blank">https://zenn.dev/ruwatana/articles/2a3850f014a512</a></p>


AWS CodeBuild のDocker Server機能でGitHubからarmコンテナの定期CI/CDのメモ※WIP

ToDoサブ（時間があったらでOK）

補足知識1 CodeBuild の Docker Server機能

補足知識2 CodeBuild の GitHub Actions Self-Hosted Runner対応

GitHub ActionsのWorkflowにClaude Codeを組み込む

docker

Discussion