Skip to main content
  1. Posts/

Publishing Hugo with GitHub Actions

·5 mins
Table of Contents

What are GitHub Actions? #

GitHub Actions is a continuous integration and continuous delivery (CI/CD) platform that allows you to automate your software development workflows directly in your GitHub repository. It enables you to build, test, and deploy your code from GitHub.Some key points about GitHub Actions:

  • It allows you to create workflows that are triggered by various GitHub events like push, pull request, issues, etc. 
  • Workflows are defined using YAML syntax in the .github/workflows directory in your repository 
  • Each workflow consists of one or more jobs which run in parallel or sequentially 
  • Jobs are made up of steps which can run commands or use actions provided by the community 
  • GitHub provides Linux, Windows, and macOS virtual machines to run your workflows, or you can use self-hosted runners 
  • It supports a wide range of programming languages and frameworks 
  • GitHub Actions is included in GitHub Free, GitHub Pro, and GitHub Enterprise plans with varying usage limits 

GitHub Actions goes beyond just CI/CD and enables automating any part of your development workflow. Some popular use cases include :

  • Automating repetitive tasks like issue triage and pull request reviews
  • Running code linters, formatters, and tests on every commit
  • Building, testing, and packaging applications for deployment
  • Deploying to cloud services like Azure, AWS, or Google Cloud
  • Interacting with external services via webhooks

In summary, GitHub Actions provides a powerful and flexible platform to automate your software development lifecycle directly within GitHub.

Build a Publish GitHub Workflow #

Like some of the other GitHub features, e.g., PR and issue templates, workflows reside in the .github of a repository in the subfolder workflows. The actual filename doesn’t have much relevance, but let’s call it publishHugo.yml.

The Basic Structure #

Here’s the basic structure of GitHub Action workflow file:

name: Publish Hugo
on: push

jobs:
  deploy:

    runs-on: ubuntu-22.04

    steps:
      - ...

The keys are quite self-explanatory, but let’s go over them:

  • name: The name of your workflow
  • on: One or more events that trigger your workflow. You’re not limited to Git events, though, as workflows can also run on events like “issue created” and others. For this blog, however, only push is required. You can check out all the possible events in the documentation.
  • jobs: One or more jobs that will run in Docker containers. In the example. A job has a series of steps that are either a pre-defined action, or you can run commands and shell scripts directly in the container.

Defining Job Steps #

To design the pipeline requires you to establish the required steps first. Remember, GitHub Actions start from a simple Docker container with a base image, so you need to set up the environment, too:

  • Checkout the repository
  • Deploy to remote server
  • Build Hugo

As GitHub Action can run arbitrary commands and scripts, you could create a shell script doing all these things and just run it.

GitHub Actions #

In essence, GitHub Actions are tasks written running in Node.js with access to a lot of GitHub features. Actions allow a workflow to concentrate what it’s supposed to do and not how to do it.

Check the repository #

The actions/checkout@v4 checks out your repository’s code into the GitHub Actions runner. It allows you to access and work with your repository’s files during the workflow execution. This is often the first step in many workflows, as it makes the repository code available for building, testing, or deploying.

- uses: actions/checkout@v4
    with:
        submodules: true  # Fetch Hugo themes (true OR recursive)
        fetch-depth: 0    # Fetch all history for .GitInfo and .Lastmod

Let’s go over the different keys:

  • uses: Which action the step uses.
  • with: Anything under this key is action-specific configuration. In my case, Congo theme is added with Hugo Module method,so submodules should be fetched as well.

Deploy to Remote Server #

Publishing Hugo in a remote server would require GitHub to SSH to server firstly and run cmds like git pull and hugo --minify remotely.

The appleboy/ssh-action@v1.0.3 action simplifies those into a single step:

- name: Deploy to Remote Server
    uses: appleboy/ssh-action@v1.0.3
    with:
        host: ${{ secrets.REMOTE_HOST }}
        username: ${{ secrets.REMOTE_USER }}
        key: ${{ secrets.REMOTE_PRIVATE_KEY }}
        script: |
            cd /path/to/your/website
            git pull origin main
            hugo --minify
            sudo systemctl restart nginx

Here’s an overview of the three required parameters:

  • REMOTE_HOST: This is the IP address or domain name of the server you want to connect to. For example, it could be something like 123.456.789.0 or yourserver.com.
  • REMOTE_USER: This is the username on the remote server that you will use for SSH access. This user should have the appropriate permissions to perform actions (e.g., building the Hugo site) on the server.
  • REMOTE_PRIVATE_KEY: This is the private key used for SSH authentication. It’s paired with the public key that is already set up on the remote server (under ~/.ssh/authorized_keys for the remote user). You will need to add this key as a secret in your GitHub repository to securely handle it in workflows.

Set GitHub Secrets #

  1. Generate a private/public key pair (if you don’t already have one)
    ssh-keygen -t rsa -b 4096 -C "your_email@example.com"

This will generate a private key (id_rsa) and a public key (id_rsa.pub).

  1. Copy the public key to your remote server
    ssh-copy-id -i ~/.ssh/id_rsa.pub user@yourserver.com

This ensures the remote server trusts the private key on your machine.

  1. Add the private key to GitHub Secrets
  • Go to your GitHub repository settings → Secrets.
  • Add a new secret for each of the required variables:
    • REMOTE_HOST
    • REMOTE_USER
    • REMOTE_PRIVATE_KEY (contents of the id_rsa private key file).

Configure workflow #

Configure workflow to reference GitHub Secrets, as shown in the complete YAML example below:

name: Deploy Hugo remotely
on:
  push:
    branches:
      - main  # Set a branch to deploy
  pull_request:

jobs:
  deploy:
    runs-on: ubuntu-22.04
    concurrency:
      group: ${{ github.workflow }}-${{ github.ref }}
    steps:
      - uses: actions/checkout@v4
        with:
          submodules: true  # Fetch Hugo themes (true OR recursive)
          fetch-depth: 0    # Fetch all history for .GitInfo and .Lastmod

      - name: Deploy to Remote Server
        uses: appleboy/ssh-action@v1.0.3
        with:
          host: ${{ secrets.REMOTE_HOST }}
          username: ${{ secrets.REMOTE_USER }}
          key: ${{ secrets.REMOTE_PRIVATE_KEY }}
          script: |
            cd /path/to/your/website
            git pull origin main
            hugo --minify
            sudo systemctl restart nginx

Summary #

After pushing changes to GitHub, this workflow will connect to your server via SSH, pull the latest code, and build the Hugo site automatically.