taiars/nora - nora - Gitea: Git with a cup of tea

taiars/nora

Fork 0

mirror of https://github.com/getnora-io/nora.git synced 2026-04-12 10:20:32 +00:00

Commit Graph

Author	SHA1	Message	Date
devitway	6ad710ff32	ci: add security scanning and SBOM to release pipeline - ci.yml: add security job (gitleaks, cargo-audit, cargo-deny, trivy fs) - release.yml: restructure into build-binary + build-docker matrix + release - build binary once on self-hosted, reuse across all Docker builds - trivy image scan per matrix variant, results to GitHub Security tab - SBOM generation in SPDX and CycloneDX formats attached to release - deny.toml: cargo-deny policy (allowed licenses, banned openssl, crates.io only) - Dockerfile: remove Rust build stage, use pre-built binary - Dockerfile.astra, Dockerfile.redos: FROM scratch for Russian certified OS support	2026-02-23 11:37:27 +00:00
DevITWay	a19477c424	ci: add GitHub Actions workflow for Docker releases - Run tests on PR and push - Build multi-arch images (amd64, arm64) - Push to ghcr.io on main branch and tags - Auto-create GitHub Release on version tags - Use BuildKit cache for faster builds	2026-01-26 00:34:00 +00:00
DevITWay	586420a476	feat: initialize NORA artifact registry Cloud-native multi-protocol artifact registry in Rust. - Docker Registry v2 - Maven (+ proxy) - npm (+ proxy) - Cargo, PyPI - Web UI, Swagger, Prometheus - Local & S3 storage - 32MB Docker image Created by DevITWay https://getnora.io	2026-01-25 17:33:15 +00:00

Author

SHA1

Message

Date

devitway

6ad710ff32

ci: add security scanning and SBOM to release pipeline

- ci.yml: add security job (gitleaks, cargo-audit, cargo-deny, trivy fs)
- release.yml: restructure into build-binary + build-docker matrix + release
  - build binary once on self-hosted, reuse across all Docker builds
  - trivy image scan per matrix variant, results to GitHub Security tab
  - SBOM generation in SPDX and CycloneDX formats attached to release
- deny.toml: cargo-deny policy (allowed licenses, banned openssl, crates.io only)
- Dockerfile: remove Rust build stage, use pre-built binary
- Dockerfile.astra, Dockerfile.redos: FROM scratch for Russian certified OS support

2026-02-23 11:37:27 +00:00

DevITWay

a19477c424

ci: add GitHub Actions workflow for Docker releases

- Run tests on PR and push
- Build multi-arch images (amd64, arm64)
- Push to ghcr.io on main branch and tags
- Auto-create GitHub Release on version tags
- Use BuildKit cache for faster builds

2026-01-26 00:34:00 +00:00

DevITWay

586420a476

feat: initialize NORA artifact registry

Cloud-native multi-protocol artifact registry in Rust.

- Docker Registry v2
- Maven (+ proxy)
- npm (+ proxy)
- Cargo, PyPI
- Web UI, Swagger, Prometheus
- Local & S3 storage
- 32MB Docker image

Created by DevITWay
https://getnora.io

2026-01-25 17:33:15 +00:00

3 Commits