Julia McGhee
df1111da15
Remove mock data from harness and add agent credential healthchecks
...
CI / lint-and-test (push) Successful in 25s
Deploy Production / deploy (push) Successful in 59s
CI / build (push) Successful in 1m11s
Strip all seed/mock data (fake tasks, models, usage entries, agent configs)
so the dashboard starts clean and populates from real API state. Add
/api/agents/health endpoint that validates each agent's provider credentials
and CLI availability.
2026-03-21 19:42:53 +00:00
Julia McGhee
9a40240bd2
Enable ServerSideApply for app-of-apps to fix CRD annotation size limit
...
CI / lint-and-test (push) Successful in 23s
Deploy Production / deploy (push) Successful in 25s
CI / build (push) Successful in 24s
ArgoCD v3.3 ApplicationSet CRD exceeds the 262144-byte client-side apply
annotation limit. ServerSideApply=true avoids this.
2026-03-21 19:33:24 +00:00
Julia McGhee
cfa9699926
Upgrade ArgoCD v2.13.3 → v3.3.4
...
CI / lint-and-test (push) Successful in 28s
Deploy Production / deploy (push) Successful in 24s
CI / build (push) Has been cancelled
Stepped through v2.14.12 → v3.0.7 → v3.1.6 → v3.2.5 → v3.3.4.
Use server-side apply with force-conflicts for CRD size limits in v3.3+.
2026-03-21 19:32:09 +00:00
gitea-actions[bot]
28ec38bc59
deploy: update production images to fccf749598
2026-03-21 19:16:47 +00:00
Julia McGhee
fccf749598
Set Gitea deployment strategy to Recreate to avoid LevelDB lock conflicts
CI / lint-and-test (push) Successful in 23s
Deploy Production / deploy (push) Successful in 15s
CI / build (push) Successful in 17s
2026-03-21 19:14:32 +00:00
Julia McGhee
0d7fa44577
Fix Gitea admin: use existing lazorgurl account and matching email
CI / lint-and-test (push) Successful in 26s
CI / build (push) Successful in 22s
2026-03-21 19:06:41 +00:00
Julia McGhee
8eefb12c97
Fix Gitea admin init: set email explicitly to avoid default conflict
CI / lint-and-test (push) Successful in 19s
CI / build (push) Successful in 16s
2026-03-21 19:05:32 +00:00
Julia McGhee
76cda86791
Fix Gitea upgrade: disable bundled valkey (renamed from redis in chart v12)
CI / lint-and-test (push) Successful in 21s
CI / build (push) Successful in 23s
2026-03-21 19:03:20 +00:00
Julia McGhee
f7ffc91a4c
Upgrade Gitea Helm chart 10.6.0 → 12.5.0 for workflow_dispatch UI
CI / lint-and-test (push) Successful in 22s
CI / build (push) Successful in 21s
2026-03-21 19:00:58 +00:00
Julia McGhee
82225fa8c9
chore: trigger harness rebuild
CI / lint-and-test (push) Successful in 23s
CI / build (push) Successful in 1m14s
2026-03-21 18:27:12 +00:00
Julia McGhee
3153f0eda5
chore: trigger web rebuild
CI / lint-and-test (push) Successful in 19s
CI / build (push) Successful in 1m14s
2026-03-21 18:23:40 +00:00
Julia McGhee
3a15f6ed07
chore: trigger api rebuild
CI / lint-and-test (push) Successful in 25s
CI / build (push) Successful in 29s
2026-03-21 18:21:11 +00:00
Julia McGhee
a525fc8aec
chore: trigger full rebuild (7)
CI / lint-and-test (push) Successful in 18s
CI / build (push) Successful in 2m11s
2026-03-21 18:13:19 +00:00
Julia McGhee
580c6dced7
Fix registry auth: use REGISTRY_TOKEN secret instead of gitea.token
CI / lint-and-test (push) Successful in 18s
CI / build (push) Successful in 19s
2026-03-21 18:12:06 +00:00
Julia McGhee
d7f0931fa6
Fix harness: add ca-certificates, make opencode install non-fatal
CI / lint-and-test (push) Successful in 17s
CI / build (push) Failing after 3m38s
2026-03-21 18:04:44 +00:00
Julia McGhee
adaff14c36
chore: trigger full rebuild (6)
CI / lint-and-test (push) Successful in 37s
CI / build (push) Failing after 5m16s
2026-03-21 17:58:13 +00:00
Julia McGhee
1dd93aa5a3
Disable telemetry for turbo, next.js in runner image
CI / lint-and-test (push) Failing after 0s
CI / build (push) Has been skipped
2026-03-21 17:54:10 +00:00
Julia McGhee
8958372716
Fix cache: combine export + pnpm install in single step
CI / lint-and-test (push) Successful in 42s
CI / build (push) Has been cancelled
2026-03-21 17:53:16 +00:00
Julia McGhee
264e498657
chore: trigger full rebuild (5)
CI / lint-and-test (push) Successful in 22s
CI / build (push) Has been cancelled
2026-03-21 17:52:17 +00:00
Julia McGhee
4bf4c0f639
Fix pnpm cache: use inline export instead of workflow env block
...
CI / lint-and-test (push) Successful in 19s
CI / build (push) Successful in 19s
act_runner v0.3.0 doesn't propagate workflow-level or job-level
env: blocks to job containers. Use export in run commands instead.
First run warms cache, subsequent runs will show reused packages.
2026-03-21 17:51:14 +00:00
Julia McGhee
dc46f8c54a
Move cache env vars to workflow level, remove debug step
...
CI / lint-and-test (push) Successful in 35s
CI / build (push) Successful in 20s
Move PNPM_STORE_DIR and COREPACK_HOME to workflow-level env
which may propagate differently than job-level in act_runner.
2026-03-21 17:48:59 +00:00
Julia McGhee
1ef3383ba1
debug: check if pnpm-store volume is mounted in job container
CI / lint-and-test (push) Successful in 43s
CI / build (push) Successful in 19s
2026-03-21 17:46:21 +00:00
Julia McGhee
2e32e02adb
Add empty public dir for harness (required by Dockerfile)
CI / lint-and-test (push) Successful in 44s
CI / build (push) Has been cancelled
2026-03-21 17:45:31 +00:00
Julia McGhee
5e86e56bed
Add .dockerignore for harness to exclude node_modules from COPY
CI / lint-and-test (push) Successful in 34s
CI / build (push) Failing after 1m12s
2026-03-21 17:43:10 +00:00
Julia McGhee
1e3d4bceaa
Install opencode via curl installer (Go binary, not on npm)
CI / lint-and-test (push) Successful in 23s
CI / build (push) Failing after 1m11s
2026-03-21 17:41:05 +00:00
Julia McGhee
188003f0e8
Fix harness Dockerfile: remove opencode (not on npm)
CI / lint-and-test (push) Successful in 37s
CI / build (push) Has been cancelled
2026-03-21 17:39:32 +00:00
Julia McGhee
e672ca5d2d
chore: trigger full rebuild (4)
CI / lint-and-test (push) Successful in 44s
CI / build (push) Failing after 3m3s
2026-03-21 17:34:23 +00:00
Julia McGhee
0a8b65a496
Mount Docker socket into job containers for docker build
...
CI / lint-and-test (push) Failing after 8s
CI / build (push) Has been skipped
Job containers need access to the DinD daemon for docker build/push.
Mount /var/run/docker.sock from DinD into job containers and set
docker_host in runner config.
2026-03-21 17:32:53 +00:00
Julia McGhee
0be7ad6dca
chore: trigger full rebuild of all app images (3)
CI / lint-and-test (push) Successful in 34s
CI / build (push) Failing after 45s
2026-03-21 17:30:47 +00:00
Julia McGhee
d8715e361f
Fix CI matrix and pnpm cache: set env vars in workflow, drop matrix
...
CI / lint-and-test (push) Successful in 27s
CI / build (push) Successful in 21s
- Set PNPM_STORE_DIR and COREPACK_HOME as job env vars instead of
relying on container.options -e flags which act_runner may ignore
- Replace fragile cross-job matrix with single-job loop for builds
- Both fixes: empty matrix app name and 0 reused packages
2026-03-21 17:29:26 +00:00
Julia McGhee
8ceea37976
chore: trigger full rebuild of all app images
CI / changes (push) Successful in 16s
CI / lint-and-test (push) Successful in 43s
CI / build (push) Failing after 19s
2026-03-21 17:27:06 +00:00
Julia McGhee
64baf319fe
Fix runner: use explicit register + daemon with --config flag
...
CI / changes (push) Successful in 1s
CI / lint-and-test (push) Successful in 32s
CI / build (push) Has been skipped
The act_runner entrypoint ignores CONFIG_FILE for the daemon
command, so container.options (pnpm cache volume) never loads.
Use a custom command that registers manually then runs daemon
with --config explicitly.
2026-03-21 17:23:25 +00:00
Julia McGhee
d13bc9103a
Fix CI changes detection: build JSON array without jq
CI / changes (push) Successful in 2s
CI / lint-and-test (push) Successful in 43s
CI / build (push) Has been skipped
2026-03-21 17:22:16 +00:00
Julia McGhee
3ef1cbd1bb
chore: trigger initial image builds for Gitea registry
CI / changes (push) Successful in 2s
CI / lint-and-test (push) Successful in 43s
CI / build (push) Failing after 20s
2026-03-21 17:20:14 +00:00
Julia McGhee
e57f458058
Fix runner: use CONFIG_FILE env var instead of command override
...
CI / changes (push) Successful in 14s
CI / lint-and-test (push) Successful in 37s
CI / build (push) Has been skipped
The command override bypasses the entrypoint that handles
registration. Use CONFIG_FILE env var which the entrypoint
respects, keeping the registration flow intact.
2026-03-21 17:14:30 +00:00
Julia McGhee
ab52874970
Fix pnpm cache: use explicit /pnpm-store path and env vars
...
CI / build (push) Blocked by required conditions
CI / changes (push) Successful in 15s
CI / lint-and-test (push) Successful in 21s
Mount volume at /pnpm-store and set PNPM_STORE_DIR and
COREPACK_HOME env vars in job containers so pnpm and corepack
both write to the cached volume. Corepack cache avoids
re-downloading pnpm binary each run.
2026-03-21 16:52:46 +00:00
Julia McGhee
b6bd2dbae0
Add workflow_dispatch trigger to deploy-production
...
CI / changes (push) Successful in 2s
CI / lint-and-test (push) Successful in 31s
CI / build (push) Has been skipped
Allows manual trigger to build all apps (or specific ones).
Empty input builds web, api, harness. Useful for initial
registry population after migration.
2026-03-21 16:49:47 +00:00
Julia McGhee
14cf33f57f
Bake pnpm into runner image, fix config loading with --config flag
...
CI / build (push) Blocked by required conditions
CI / changes (push) Successful in 2s
CI / lint-and-test (push) Successful in 27s
Deploy Production / deploy (push) Successful in 24s
Pre-install pnpm 9.15.4 via corepack in the image so it doesn't
download every run. Use --config CLI flag instead of CONFIG_FILE
env var to ensure container.options volume mount is applied.
2026-03-21 16:49:14 +00:00
Julia McGhee
65abed3426
Fix runner config: timeout needs duration string not int
CI / changes (push) Successful in 10s
CI / lint-and-test (push) Successful in 51s
CI / build (push) Has been skipped
Deploy Production / deploy (push) Successful in 22s
2026-03-21 16:43:50 +00:00
Julia McGhee
eced4c1473
Add pnpm store cache to runner via persistent Docker volume
...
CI / changes (push) Successful in 2s
CI / lint-and-test (push) Successful in 49s
Deploy Production / deploy (push) Failing after 20s
CI / build (push) Has been skipped
Mount a named Docker volume (pnpm-store) into every job container
at the default pnpm store path. The volume persists in the DinD
sidecar across job runs, so pnpm install reuses cached packages.
2026-03-21 16:41:37 +00:00
Julia McGhee
98ab851b60
Use custom runner image with jq, kustomize, docker pre-installed
...
CI / changes (push) Successful in 1s
Deploy Production / deploy (push) Failing after 26s
CI / build (push) Has been skipped
CI / lint-and-test (push) Successful in 35s
Build a runner-image based on node:20-bookworm with all CI tools
baked in, avoiding apt-get install in every workflow run. Runner
labels now point to gitea.coreworlds.io/lazorgurl/runner-image.
2026-03-21 16:39:34 +00:00
Julia McGhee
eb8e090283
Fix kustomize install: download binary, not apt package
...
CI / changes (push) Successful in 5s
CI / lint-and-test (push) Successful in 23s
Deploy Production / deploy (push) Failing after 2m35s
CI / build (push) Has been skipped
kustomize isn't in Debian repos. Download from GitHub releases.
2026-03-21 16:36:06 +00:00
Julia McGhee
22488d5bf5
Fix CI: install jq/kustomize, fetch-depth 2 for deploy-production
...
CI / changes (push) Successful in 5s
CI / lint-and-test (push) Successful in 41s
Deploy Production / deploy (push) Failing after 5s
CI / build (push) Has been skipped
node:20-bookworm doesn't include jq or kustomize. Also need
fetch-depth: 2 so HEAD~1 exists for turbo's change detection.
2026-03-21 16:34:22 +00:00
Julia McGhee
0b69d6c6f4
Simplify workflows: drop setup-node/pnpm-action, use corepack
...
CI / changes (push) Successful in 1s
CI / lint-and-test (push) Successful in 32s
Deploy Production / deploy (push) Failing after 19s
CI / build (push) Has been skipped
The runner containers use node:20-bookworm which already has Node
and corepack. Remove actions/setup-node and pnpm/action-setup
which hang in Gitea Actions. Use corepack enable + pnpm directly.
Also fix preview comment to use Gitea API instead of github-script.
2026-03-21 16:31:01 +00:00
Julia McGhee
b28b1fcae2
Use gitea.token instead of secrets.GITEA_TOKEN in workflows
...
CI / build (push) Blocked by required conditions
Deploy Production / deploy (push) Waiting to run
CI / changes (push) Successful in 2s
CI / lint-and-test (push) Has been cancelled
The built-in gitea.token is automatically available in Gitea
Actions without needing a repo secret configured.
2026-03-21 16:26:39 +00:00
Julia McGhee
9c02fd7f4c
Add Gitea SSH host key to ArgoCD known_hosts via kustomize patch
...
CI / build (push) Blocked by required conditions
Deploy Production / deploy (push) Waiting to run
CI / changes (push) Successful in 2s
CI / lint-and-test (push) Has been cancelled
Without this, ArgoCD rejects SSH connections to the in-cluster
Gitea service. Uses a patch file to replace the known_hosts
ConfigMap with defaults + Gitea key.
2026-03-21 16:23:49 +00:00
Julia McGhee
b8ef09359d
Re-seal ArgoCD repo secret with insecure flag for in-cluster SSH
CI / build (push) Blocked by required conditions
Deploy Production / deploy (push) Waiting to run
CI / changes (push) Successful in 2s
CI / lint-and-test (push) Has been cancelled
2026-03-21 16:19:29 +00:00
Julia McGhee
1d98d6e131
Cut over ArgoCD to Gitea: update all repoURLs and PR generator
...
CI / build (push) Blocked by required conditions
Deploy Production / deploy (push) Waiting to run
CI / changes (push) Successful in 1s
CI / lint-and-test (push) Has been cancelled
Switch app-of-apps, platform, apps, and previews ApplicationSets
to read from in-cluster Gitea (gitea-helm-ssh.platform.svc:2222).
Previews now use Gitea PR generator instead of GitHub.
2026-03-21 16:15:22 +00:00
Julia McGhee
e6f8054055
Fix runner DinD: disable TLS between sidecar containers
...
CI / build (push) Blocked by required conditions
Deploy Production / deploy (push) Waiting to run
CI / changes (push) Successful in 19s
CI / lint-and-test (push) Has been cancelled
TLS between act_runner and DinD in the same pod is unnecessary
and causes race conditions with cert generation. Use port 2375
(no TLS) and set DOCKER_TLS_CERTDIR="" on the DinD sidecar.
2026-03-21 16:13:19 +00:00
Julia McGhee
30c6f89f20
Seal remaining Gitea secrets: API token, runner token, pull secret
...
CI / changes (push) Waiting to run
CI / lint-and-test (push) Waiting to run
CI / build (push) Blocked by required conditions
Deploy Production / deploy (push) Waiting to run
All placeholder secrets replaced with real sealed values:
- argocd-gitea-token: API token for ArgoCD PR generator
- gitea-runner-token: registration token for in-cluster runner
- gitea-pull-secret: registry credentials for app image pulls
2026-03-21 16:09:19 +00:00
