akanealw/Charon
1
0
Fork 0
Code Issues Pull Requests Actions 5 Packages Projects Releases Wiki Activity
Files
4e9d6825a6c81ee4cccdd6b1dca53aeeba1ea26f
Charon/docs/beta_release_pr_body.md
GitHub Actions 8294d6ee49 Add QA test outputs, build scripts, and Dockerfile validation 
- Created `qa-test-output-after-fix.txt` and `qa-test-output.txt` to log results of certificate page authentication tests.
- Added `build.sh` for deterministic backend builds in CI, utilizing `go list` for efficiency.
- Introduced `codeql_scan.sh` for CodeQL database creation and analysis for Go and JavaScript/TypeScript.
- Implemented `dockerfile_check.sh` to validate Dockerfiles for base image and package manager mismatches.
- Added `sourcery_precommit_wrapper.sh` to facilitate Sourcery CLI usage in pre-commit hooks.
2025-12-11 18:26:24 +00:00

1.8 KiB
Raw Blame History

Beta Release Draft Pull Request

Overview

Draft PR to merge hardened CI/release workflow changes from feature/beta-release into feature/alpha-completion.

Highlights

  • Secret token migration: prefer CHARON_TOKEN while maintaining support for CPMP_TOKEN (fallback) where needed.
  • Release workflow refinements: stable prerelease detection (alpha/beta/rc), artifact matrix intact.
  • Prior infra hardening (already partially merged earlier): pinned GitHub Action SHAs/tags, resilient Delve (dlv) multi-arch build handling.
  • Extensive incremental documentation trail in docs/beta_release_draft_pr.md plus concise snapshot in docs/beta_release_draft_pr_body_snapshot.md for reviewers.

Ahead Commits (Representative)

Most recent snapshot commit: 308ae5dd (final body content before PR). Full ordered list in docs/beta_release_draft_pr.md.

Review Checklist

  • Secret CHARON_TOKEN (or CPMP_TOKEN fallback) exists and has required scopes.
  • No lingering CHARON_TOKEN or CPMP_TOKEN references beyond allowed GitHub-provided contexts.
  • Artifact list (frontend dist, backend binaries, caddy binaries) still correct for release.

Risks & Mitigations

  • Secret rename: Mitigate by verifying secret presence before merge.
  • Workflow call path validity: docker-publish.yml referenced locally; CI on draft will validate end-to-end.

Deferred Items (Out of Scope Here)

  • Frontend test coverage improvements (ProxyHostForm).
  • Additional beta observability and import validation tasks.

Actions After Approval

  1. Confirm CI draft run passes.
  2. Convert PR from draft to ready-for-review.
  3. Merge into feature/alpha-completion.

Request

Please focus review on secret usage, workflow call integrity, and artifact correctness. Comment with any missed token references.

Generated programmatically to aid structured review.

Reference in New Issue View Git Blame Copy Permalink