akanealw
eec8c28fb3
Go Benchmark / Performance Regression Check (push) Has been cancelled
Cerberus Integration / Cerberus Security Stack Integration (push) Has been cancelled
Upload Coverage to Codecov / Backend Codecov Upload (push) Has been cancelled
Upload Coverage to Codecov / Frontend Codecov Upload (push) Has been cancelled
CodeQL - Analyze / CodeQL analysis (go) (push) Has been cancelled
CodeQL - Analyze / CodeQL analysis (javascript-typescript) (push) Has been cancelled
CrowdSec Integration / CrowdSec Bouncer Integration (push) Has been cancelled
Docker Build, Publish & Test / build-and-push (push) Has been cancelled
Quality Checks / Auth Route Protection Contract (push) Has been cancelled
Quality Checks / Codecov Trigger/Comment Parity Guard (push) Has been cancelled
Quality Checks / Backend (Go) (push) Has been cancelled
Quality Checks / Frontend (React) (push) Has been cancelled
Rate Limit integration / Rate Limiting Integration (push) Has been cancelled
Security Scan (PR) / Trivy Binary Scan (push) Has been cancelled
Supply Chain Verification (PR) / Verify Supply Chain (push) Has been cancelled
WAF integration / Coraza WAF Integration (push) Has been cancelled
Docker Build, Publish & Test / Security Scan PR Image (push) Has been cancelled
Repo Health Check / Repo health (push) Has been cancelled
History Rewrite Dry-Run / Dry-run preview for history rewrite (push) Has been cancelled
Prune Renovate Branches / prune (push) Has been cancelled
Renovate / renovate (push) Has been cancelled
Nightly Build & Package / sync-development-to-nightly (push) Has been cancelled
Nightly Build & Package / Trigger Nightly Validation Workflows (push) Has been cancelled
Nightly Build & Package / build-and-push-nightly (push) Has been cancelled
Nightly Build & Package / test-nightly-image (push) Has been cancelled
Nightly Build & Package / verify-nightly-supply-chain (push) Has been cancelled
Update GeoLite2 Checksum / update-checksum (push) Has been cancelled
Container Registry Prune / prune-ghcr (push) Has been cancelled
Container Registry Prune / prune-dockerhub (push) Has been cancelled
Container Registry Prune / summarize (push) Has been cancelled
Supply Chain Verification / Verify SBOM (push) Has been cancelled
Supply Chain Verification / Verify Release Artifacts (push) Has been cancelled
Supply Chain Verification / Verify Docker Image Supply Chain (push) Has been cancelled
Monitor Caddy Major Release / check-caddy-major (push) Has been cancelled
Weekly Nightly to Main Promotion / Verify Nightly Branch Health (push) Has been cancelled
Weekly Nightly to Main Promotion / Create Promotion PR (push) Has been cancelled
Weekly Nightly to Main Promotion / Trigger Missing Required Checks (push) Has been cancelled
Weekly Nightly to Main Promotion / Notify on Failure (push) Has been cancelled
Weekly Nightly to Main Promotion / Workflow Summary (push) Has been cancelled
Weekly Security Rebuild / Security Rebuild & Scan (push) Has been cancelled
1.9 KiB
Executable File
1.9 KiB
Executable File
Beta Release Draft Pull Request
Overview
This draft PR merges recent beta preparation changes from feature/beta-release into feature/alpha-completion to align the alpha integration branch with the latest CI, workflow, and release process improvements.
Changes Included (Summary)
- Workflow token migration: prefer
GITHUB_TOKEN(fallbackCHARON_TOKEN) across release and maintenance workflows. - Stabilized release workflow prerelease detection and artifact publication.
- Prior (already merged earlier) CI enhancements: pinned action versions, Docker multi-arch debug tooling reliability, dynamic
dlvbinary resolution. - Documentation updates enumerating each incremental workflow/token adjustment for auditability.
Commits Ahead of feature/alpha-completion
(See docs/beta_release_draft_pr.md for full enumerated list.) Latest unique commit: 5727c586 (refreshed body snapshot).
Rationale
Ensures alpha integration branch inherits hardened CI/release pipeline and updated secret naming policy before further alpha feature consolidation.
Risk & Mitigation
- Secret Name Change: Prefer
GITHUB_TOKEN(keepCHARON_TOKENas a fallback). Mitigation: VerifyGITHUB_TOKEN(orCHARON_TOKEN) presence before merge. - Workflow Fan-out: Reusable workflow path validated locally; CI run (draft) will confirm.
Follow-ups (Out of Scope)
- Frontend test coverage improvements (ProxyHostForm).
- Additional beta observability and import validation tasks.
Checklist
- YAML lint (pre-commit passed)
- Secret reference consistency
- Release artifact list intact
- Draft PR CI run (pending after opening)
Requested Review Focus
- Confirm
GITHUB_TOKEN(orCHARON_TOKENfallback) availability. - Sanity-check release artifact matrix remains correct.
- Spot any residual
GITHUB_TOKENorCHARON_TOKENreferences missed.
Generated draft to align branches; will convert to ready-for-review after validation.