orcs-oss/orcs-code
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
524 Commits 29 Branches 14 Tags
main
Commit Graph

16 Commits

Author SHA1 Message Date
dhenuh
c207cdbdcc ci: skip release-please on fork repositories (#701) 2026-04-15 19:46:39 +08:00
Fexiven
658d076909 feat: add Docker image build and push to GHCR on release (#656) 
* feat: add Docker image build and push to GHCR on release

Add Dockerfile (multi-stage build with node:22-slim) and a new docker
job in the release workflow that builds and pushes to ghcr.io when
release-please creates a tag.

* feat(docker): run as non-root user and add smoke test

Run the container as a non-root appuser to reduce blast radius.
Add a smoke test step that runs --version before pushing to GHCR.
 2026-04-14 19:03:10 +08:00
Kevin Codex
84fcc7f7e0 ci: publish npm in release workflow (#630) 2026-04-13 01:00:07 +08:00
Kevin Codex
41a86d05fa ci: publish from release events (#628) 2026-04-13 00:33:43 +08:00
Kevin Codex
fa4b6a96c0 Fix/manual publish current release (#627) 
* ci: keep manual publish path for current release

* ci: fix trusted publishing metadata
 2026-04-13 00:23:00 +08:00
Kevin Codex
d03d77b110 ci: keep manual publish path for current release (#626) 2026-04-13 00:18:43 +08:00
Kevin Codex
15de1d6190 Fix/release please invalid input (#624) 
* ci: remove invalid release-please input

* ci: add npm publish debug diagnostics

* ci: allow manual publish of existing release tags
 2026-04-12 23:59:19 +08:00
Kevin Codex
2e39d2607a Fix/release please invalid input (#620) 
* ci: remove invalid release-please input

* ci: add npm publish debug diagnostics
 2026-04-12 23:24:39 +08:00
Kevin Codex
3cefe2297d ci: remove invalid release-please input (#618) 2026-04-12 22:40:38 +08:00
Kevin Codex
40ac164501 ci: add secure automated release workflow (#615) 
* ci: add secure automated release workflow

* ci: fix release-please action pin
 2026-04-12 21:57:00 +08:00
Urvish Lanje
648ae8053b ci: run python provider tests in pr-checks (#477) 
* Add WakaTime extension to devcontainer configuration

* ci: run python provider tests in pr-checks

* Delete .devcontainer directory

* ci: added requirements.txt for pip caching

* ci: addressed security and mainenance issues

* ci: updated release tag

* Update .github/workflows/pr-checks.yml

Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com>

* ci: added full commit SHA for python setup

---------

Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com>
 2026-04-08 15:18:04 +08:00
Kevin Codex
7350a798cb Feature/pr intent scan hardening (#375) 
* security: harden suspicious PR intent scanner

* security: reduce pr scanner false positives
 2026-04-05 17:05:24 +08:00
Kevin Codex
5ef79546e9 test: stabilize suite and add coverage heatmap (#373) 
* test: stabilize suite and add coverage heatmap

* ci: run full bun test suite in pr checks
 2026-04-05 12:44:54 +08:00
Vasanth T
7c0ea68b65 fix: address code scanning alerts (#240) 2026-04-03 14:52:35 +05:30
Juan Camilo
3ca6c299d6 security: pin GitHub Actions to immutable SHA digests 
Pin all GitHub Actions to commit SHA instead of mutable version tags
to prevent supply chain attacks via tag poisoning. This is especially
important for third-party actions like oven-sh/setup-bun.
 2026-04-02 11:09:19 +02:00
Vasanthdev2004
9951da5397 ci: add PR smoke and provider test checks 2026-04-02 00:00:12 +05:30