chore: migrate from Gitea to GitHub Actions exclusively

Remove Gitea workflows and consolidate to GitHub Actions as the single CI/CD platform. GitHub is now the sole source of truth for the project. Changes: - Remove .gitea/workflows/ directory entirely - ai-review.yaml (Gitea-specific, not migrating) - e2e.yaml (replaced by .github/workflows/e2e.yaml) - release.yaml (already exists at .github/workflows/release.yaml) - Migrate .gitea/workflows/ci.yaml → .github/workflows/ci.yaml - Add unit tests to CI workflow - Use Node.js 20 with npm caching - Add 10-minute timeout GitHub Actions Workflows: - ci.yaml: Lint, type-check, format-check, build, test - e2e.yaml: End-to-end Playwright tests - release.yaml: Build tarball, create GitHub release, update ArtifactHub metadata Repository Setup: - Single remote: https://github.com/cpfarhood/headlamp-polaris-plugin - All development, CI/CD, and releases happen on GitHub - ArtifactHub pulls releases from GitHub every 30 minutes Generated with [Claude Code](https://claude.ai/code) via [Happy](https://happy.engineering) Co-Authored-By: Claude <noreply@anthropic.com> Co-Authored-By: Happy <yesreply@happy.engineering>
2026-02-11 23:03:24 -05:00
parent 51b174e68d
commit f02b4cf051
4 changed files with 15 additions and 242 deletions
@@ -1,36 +0,0 @@
 name: AI Code Review
 on:
  pull_request:
    branches:
      - main
 jobs:
  ai-review:
    name: AI Code Review
    runs-on: ubuntu-latest
    container:
      image: catthehacker/ubuntu:act-latest
    steps:
      - name: Checkout code
        uses: actions/checkout@v4
        with:
          fetch-depth: 0
      - name: AI Review
        uses: Nikita-Filonov/ai-review@v0.56.0
        with:
          review-command: run
        env:
          LLM__PROVIDER: "OPENAI"
          LLM__META__MODEL: ${{ vars.AI_REVIEW_MODEL }}
          LLM__META__MAX_TOKENS: "15000"
          LLM__META__TEMPERATURE: "0.3"
          LLM__HTTP_CLIENT__API_URL: "https://api.openai.com/v1"
          LLM__HTTP_CLIENT__API_TOKEN: ${{ secrets.OPENAI_API_KEY }}
          VCS__PROVIDER: "GITEA"
          VCS__PIPELINE__OWNER: ${{ github.repository_owner }}
          VCS__PIPELINE__REPO: ${{ github.event.repository.name }}
          VCS__PIPELINE__PULL_NUMBER: ${{ github.event.pull_request.number }}
          VCS__HTTP_CLIENT__API_URL: ${{ github.server_url }}/api/v1
          VCS__HTTP_CLIENT__API_TOKEN: ${{ secrets.AI_REVIEW_GITEA_TOKEN }}
@@ -1,28 +0,0 @@
 name: E2E
 on:
  push:
    branches:
      - main
  pull_request:
 jobs:
  e2e:
    runs-on: ubuntu-latest
    container: node:20
    steps:
      - name: Checkout
        uses: actions/checkout@v4
      - name: Install dependencies
        run: npm ci
      - name: Install Chromium
        run: npx playwright install --with-deps chromium
      - name: Run E2E smoke tests
        env:
          HEADLAMP_URL: https://headlamp.animaniacs.farh.net
          AUTHENTIK_USERNAME: ${{ secrets.AUTHENTIK_USERNAME }}
          AUTHENTIK_PASSWORD: ${{ secrets.AUTHENTIK_PASSWORD }}
        run: npx playwright test
@@ -1,173 +0,0 @@
 name: Release
 on:
  push:
    tags:
      - 'v*'
 jobs:
  release:
    runs-on: ubuntu-latest
    container: node:20
    steps:
      - name: Checkout
        uses: actions/checkout@v4
        with:
          fetch-depth: 0
      - name: Check if release is already finalized
        run: |
          VERSION=${GITHUB_REF_NAME#v}
          TARBALL_URL="https://github.com/cpfarhood/headlamp-polaris-plugin/releases/download/${GITHUB_REF_NAME}/headlamp-polaris-plugin-${VERSION}.tar.gz"
          HTTP_CODE=$(curl -sL -o /tmp/release.tar.gz -w "%{http_code}" "$TARBALL_URL" 2>/dev/null)
          if [ "$HTTP_CODE" = "200" ]; then
            ACTUAL="sha256:$(sha256sum /tmp/release.tar.gz | awk '{print $1}')"
            EXPECTED=$(grep 'archive-checksum' artifacthub-pkg.yml | awk '{print $2}')
            echo "Release tarball checksum: $ACTUAL"
            echo "Metadata checksum:        $EXPECTED"
            if [ "$ACTUAL" = "$EXPECTED" ]; then
              echo "SKIP_BUILD=true" >> $GITHUB_ENV
              echo "Checksums match - release is finalized, nothing to do"
            fi
          else
            echo "No existing release (HTTP $HTTP_CODE) - will build"
          fi
          rm -f /tmp/release.tar.gz
      - name: Install dependencies
        run: |
          [ "$SKIP_BUILD" = "true" ] && exit 0
          npm ci
      - name: Build plugin
        run: |
          [ "$SKIP_BUILD" = "true" ] && exit 0
          npx @kinvolk/headlamp-plugin build
      - name: Package tarball
        run: |
          [ "$SKIP_BUILD" = "true" ] && exit 0
          npx @kinvolk/headlamp-plugin package
      - name: Compute tarball checksum
        run: |
          [ "$SKIP_BUILD" = "true" ] && exit 0
          TARBALL=$(ls *.tar.gz)
          CHECKSUM=$(sha256sum "$TARBALL" | awk '{print $1}')
          echo "TARBALL=$TARBALL" >> $GITHUB_ENV
          echo "CHECKSUM=$CHECKSUM" >> $GITHUB_ENV
          echo "Tarball: $TARBALL"
          echo "Checksum: sha256:$CHECKSUM"
      - name: Install Docker CLI
        run: |
          [ "$SKIP_BUILD" = "true" ] && exit 0
          apt-get update && apt-get install -y docker.io
      - name: Build and push Docker image
        run: |
          [ "$SKIP_BUILD" = "true" ] && exit 0
          docker build -t git.farh.net/${{ github.repository }}:${{ github.ref_name }} -t git.farh.net/${{ github.repository }}:latest .
          echo "${{ secrets.REGISTRY_TOKEN }}" | docker login git.farh.net -u ${{ github.actor }} --password-stdin
          docker push git.farh.net/${{ github.repository }}:${{ github.ref_name }}
          docker push git.farh.net/${{ github.repository }}:latest
      - name: Create Gitea release
        run: |
          [ "$SKIP_BUILD" = "true" ] && exit 0
          API_URL="${GITHUB_SERVER_URL}/api/v1/repos/${GITHUB_REPOSITORY}"
          # Create release (or get existing)
          RELEASE=$(curl -s -X POST \
            -H "Authorization: token ${{ github.token }}" \
            -H "Content-Type: application/json" \
            "${API_URL}/releases" \
            -d "{\"tag_name\":\"${GITHUB_REF_NAME}\",\"name\":\"${GITHUB_REF_NAME}\"}")
          RELEASE_ID=$(echo "$RELEASE" | node -e "process.stdin.resume();let d='';process.stdin.on('data',c=>d+=c);process.stdin.on('end',()=>console.log(JSON.parse(d).id))")
          if [ "$RELEASE_ID" = "undefined" ]; then
            RELEASE=$(curl -sf \
              -H "Authorization: token ${{ github.token }}" \
              "${API_URL}/releases/tags/${GITHUB_REF_NAME}")
            RELEASE_ID=$(echo "$RELEASE" | node -e "process.stdin.resume();let d='';process.stdin.on('data',c=>d+=c);process.stdin.on('end',()=>console.log(JSON.parse(d).id))")
          fi
          echo "Gitea Release ID: $RELEASE_ID"
          # Delete existing assets
          ASSETS=$(curl -sf \
            -H "Authorization: token ${{ github.token }}" \
            "${API_URL}/releases/${RELEASE_ID}/assets")
          echo "$ASSETS" | node -e "
            process.stdin.resume();let d='';
            process.stdin.on('data',c=>d+=c);
            process.stdin.on('end',()=>{
              JSON.parse(d).forEach(a=>console.log(a.id));
            })" | while read -r ASSET_ID; do
            curl -sf -X DELETE \
              -H "Authorization: token ${{ github.token }}" \
              "${API_URL}/releases/${RELEASE_ID}/assets/${ASSET_ID}"
          done
          # Upload tarball
          curl -sf -X POST \
            -H "Authorization: token ${{ github.token }}" \
            -F "attachment=@${TARBALL}" \
            "${API_URL}/releases/${RELEASE_ID}/assets?name=${TARBALL}"
          echo "Gitea release updated"
      - name: Create GitHub release
        run: |
          [ "$SKIP_BUILD" = "true" ] && exit 0
          # GitHub API to create/update release
          GITHUB_API="https://api.github.com/repos/cpfarhood/headlamp-polaris-plugin"
          # Check if release exists
          RELEASE_DATA=$(curl -sf \
            -H "Authorization: token ${{ secrets.GH_TOKEN }}" \
            "${GITHUB_API}/releases/tags/${GITHUB_REF_NAME}" || echo "{}")
          RELEASE_ID=$(echo "$RELEASE_DATA" | node -e "process.stdin.resume();let d='';process.stdin.on('data',c=>d+=c);process.stdin.on('end',()=>console.log(JSON.parse(d).id||''))")
          if [ -z "$RELEASE_ID" ]; then
            # Create new release
            RELEASE_DATA=$(curl -sf -X POST \
              -H "Authorization: token ${{ secrets.GH_TOKEN }}" \
              -H "Content-Type: application/json" \
              "${GITHUB_API}/releases" \
              -d "{\"tag_name\":\"${GITHUB_REF_NAME}\",\"name\":\"${GITHUB_REF_NAME}\",\"draft\":false,\"prerelease\":false}")
            RELEASE_ID=$(echo "$RELEASE_DATA" | node -e "process.stdin.resume();let d='';process.stdin.on('data',c=>d+=c);process.stdin.on('end',()=>console.log(JSON.parse(d).id))")
          fi
          echo "GitHub Release ID: $RELEASE_ID"
          # Upload tarball to GitHub
          UPLOAD_URL=$(echo "$RELEASE_DATA" | node -e "process.stdin.resume();let d='';process.stdin.on('data',c=>d+=c);process.stdin.on('end',()=>{const r=JSON.parse(d);console.log(r.upload_url||'https://uploads.github.com/repos/cpfarhood/headlamp-polaris-plugin/releases/${RELEASE_ID}/assets')})" | sed 's/{.*}//')
          curl -sf -X POST \
            -H "Authorization: token ${{ secrets.GH_TOKEN }}" \
            -H "Content-Type: application/gzip" \
            --data-binary "@${TARBALL}" \
            "${UPLOAD_URL}?name=${TARBALL}"
          echo "GitHub release updated"
      - name: Update metadata and align tag
        run: |
          [ "$SKIP_BUILD" = "true" ] && exit 0
          VERSION=${GITHUB_REF_NAME#v}
          git config user.name "gitea-actions[bot]"
          git config user.email "gitea-actions[bot]@git.farh.net"
          # Determine which Gitea branch to update based on version suffix
          if [[ "$VERSION" == *"-dev."* ]]; then
            GITEA_BRANCH="dev"
          else
            GITEA_BRANCH="main"
          fi
          git fetch origin ${GITEA_BRANCH}
          git checkout origin/${GITEA_BRANCH} -B temp-update
          sed -i "s|headlamp/plugin/archive-checksum:.*|headlamp/plugin/archive-checksum: sha256:${CHECKSUM}|" artifacthub-pkg.yml
          sed -i "s|headlamp/plugin/archive-url:.*|headlamp/plugin/archive-url: \"https://github.com/cpfarhood/headlamp-polaris-plugin/releases/download/${GITHUB_REF_NAME}/headlamp-polaris-plugin-${VERSION}.tar.gz\"|" artifacthub-pkg.yml
          sed -i "s|^version:.*|version: ${VERSION}|" artifacthub-pkg.yml
          git add artifacthub-pkg.yml
          git diff --cached --quiet || {
            git commit -m "ci: update artifact hub metadata for ${GITHUB_REF_NAME}"
            git push origin temp-update:${GITEA_BRANCH}
          }
          # Force-move tag to the commit with correct checksum.
          # This triggers a new CI run, but the guard step will detect
          # that the release checksum already matches and skip the build.
          git tag -f ${GITHUB_REF_NAME}
          git push -f origin ${GITHUB_REF_NAME}
          echo "Tag ${GITHUB_REF_NAME} aligned with updated metadata"
          echo "Note: GitHub sync handled by Gitea mirror configuration"
@@ -2,22 +2,29 @@ name: CI
 on:
  push:
-    branches:
+    branches: [main]
      - main
  pull_request:
    branches: [main]
 jobs:
-  lint:
+  lint-and-test:
    runs-on: ubuntu-latest
-    container: node:20
+    timeout-minutes: 10
    steps:
      - name: Checkout
        uses: actions/checkout@v4
      - name: Setup Node.js
        uses: actions/setup-node@v4
        with:
          node-version: '20'
          cache: 'npm'
      - name: Install dependencies
        run: npm ci
-      - name: Build
+      - name: Build plugin
        run: npx @kinvolk/headlamp-plugin build
      - name: Lint
@@ -28,3 +35,6 @@ jobs:
      - name: Format check
        run: npx prettier --check src/
      - name: Run unit tests
        run: npm test