HomeLab/ForgeBucket
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases 1 Wiki Activity

random edits

Browse Source
This commit is contained in:
erangel1
2026-05-12 22:51:04 +02:00
parent 91462500f0
commit f99f0e0fc5
5 changed files with 50 additions and 7 deletions
Download Patch File Download Diff File Expand all files Collapse all files
.env
+13
View File
@@ -32,3 +32,16 @@ INSTANCE_NAME=ForgeBucket
# ─── Dev only ───────────────────────────────────────────────────────────────── # ─── Dev only ─────────────────────────────────────────────────────────────────
# Set to true to disable Secure cookies and enable verbose logging # Set to true to disable Secure cookies and enable verbose logging
DEBUG=true DEBUG=true
# PEM-encoded ECDSA P-256 private key. If empty, an ephemeral key is generated
# at startup (signatures will not survive restart). Generate with:
# openssl ecparam -genkey -name prime256v1 -noout -out signing-key.pem
ARTIFACT_SIGNING_KEY="-----BEGIN EC PRIVATE KEY-----
MHcCAQEEIKGMjCu0NdczHQ7BRDeo0hTOLauF9vOenWl0HlyN4bzToAoGCCqGSM49
AwEHoUQDQgAE+VL1HhQ1us0QfNH+5Var8lo5Oww83B+QDQ2obzHL4JZl0UM3kVAB
SePwUlkfdW6u4a0KYMYf3Op6wsXTp0kA2g==
-----END EC PRIVATE KEY-----"
# ─── OCI Registry (Phase 4) ───────────────────────────────────────────────────
# Root directory for the OCI Distribution Spec blob and upload storage.
OCI_ROOT=/var/lib/forgebucket/oci
CHANGELOG.md
+28 -3
View File
@@ -9,9 +9,9 @@ Versions follow [Semantic Versioning](https://semver.org/spec/v2.0.0.html).
## [Unreleased] ## [Unreleased]
### Planned — Phase 4 (Intelligence + Artifacts) ### Planned — Phase 4 ( Artifacts + Git HTTP(S)/SSH Support + Releases Page)
- AI failure diagnosis (pipeline failure root-cause analysis via Claude API)
- AI deployment risk scoring ### 4A. Artifacts
- Signed artifacts (Sigstore/Cosign) - Signed artifacts (Sigstore/Cosign)
- SBOM generation (CycloneDX/SPDX) - SBOM generation (CycloneDX/SPDX)
- OCI container registry - OCI container registry
@@ -19,6 +19,31 @@ Versions follow [Semantic Versioning](https://semver.org/spec/v2.0.0.html).
- Dependency vulnerability scanning - Dependency vulnerability scanning
- Cross-instance pull requests (ForgeFed ActivityPub extension) - Cross-instance pull requests (ForgeFed ActivityPub extension)
### 4B. Git HTTP(S)/SSH Support
### 4C. Releases Page
- Goal:
- Make releases operationally meaningful.
- Build:
- releases
- release notes
- release assets
- changelog generation
- release timelines
- release channels
- Add:
- signed artifacts
- rollback metadata
- deployment associations
- UI:
- Release page should show:
- version
- artifacts
- deployments
- timeline
- health
> NOT just markdown notes.
--- ---
## [0.9.0] — 2026-05-12 ## [0.9.0] — 2026-05-12
docker-compose.prod.yml
+2
View File
@@ -27,7 +27,9 @@ services:
- "8080:8080" - "8080:8080"
volumes: volumes:
- repo_data:/var/lib/forgebucket/repos - repo_data:/var/lib/forgebucket/repos
- oci_data:/var/lib/forgebucket/oci
volumes: volumes:
postgres_data: postgres_data:
repo_data: repo_data:
oci_data:
docker-compose.yml
+2 -4
View File
@@ -1,5 +1,3 @@
version: "3.9"
# Dev: only PostgreSQL runs here. Run the Go server locally with `make dev`. # Dev: only PostgreSQL runs here. Run the Go server locally with `make dev`.
# Production: docker compose -f docker-compose.prod.yml up # Production: docker compose -f docker-compose.prod.yml up
@@ -9,8 +7,8 @@ services:
restart: unless-stopped restart: unless-stopped
command: ["-js", "-m", "8222"] command: ["-js", "-m", "8222"]
ports: ports:
- "4222:4222" # client connections - "4222:4222" # client connections
- "8222:8222" # monitoring HTTP - "8222:8222" # monitoring HTTP
healthcheck: healthcheck:
test: ["CMD", "wget", "--spider", "-q", "http://localhost:8222/healthz"] test: ["CMD", "wget", "--spider", "-q", "http://localhost:8222/healthz"]
interval: 5s interval: 5s
signing-key.pem
+5
View File
@@ -0,0 +1,5 @@
-----BEGIN EC PRIVATE KEY-----
MHcCAQEEIKGMjCu0NdczHQ7BRDeo0hTOLauF9vOenWl0HlyN4bzToAoGCCqGSM49
AwEHoUQDQgAE+VL1HhQ1us0QfNH+5Var8lo5Oww83B+QDQ2obzHL4JZl0UM3kVAB
SePwUlkfdW6u4a0KYMYf3Op6wsXTp0kA2g==
-----END EC PRIVATE KEY-----