root
81c7a8a46a
feat: add AI code review workflow (Phase 8.1)
AI Review / AI Code Review (pull_request) Successful in 1s
PR Checks / Validate & Security Scan (pull_request) Successful in 12s
2026-02-14 18:36:09 +01:00
CI Bot
74d54866b9
deploy: demo-app 1a3f0c5 to dev
2026-02-14 16:52:57 +00:00
e10c2fe4bc
Merge pull request 'feat: Add PR checks workflow (Phase 8.0)' ( #1 ) from feature/security-scanning into main
2026-02-14 17:52:49 +01:00
Claude AI
a879357971
fix: add --break-system-packages for pip3 in CI (PEP 668)
PR Checks / Validate & Security Scan (pull_request) Successful in 25s
2026-02-14 17:19:01 +01:00
Claude AI
6b8fcaeb66
ci: trigger fresh PR checks
PR Checks / Validate & Security Scan (pull_request) Failing after 4s
2026-02-14 17:08:52 +01:00
Claude AI
de2fc834b3
feat: add PR checks workflow (Phase 8.0)
...
PR Checks / Validate & Security Scan (pull_request) Failing after 5s
- Add pr-checks.yaml: yamllint, kubeconform, gitleaks, trivy config scan
- Use standard runner image with tool installation steps
2026-02-14 16:54:17 +01:00
root
c9b7dfc989
feat: staging/prod environments + promotion script
2026-02-14 16:01:54 +01:00
root
404087e7f9
fix: add imagePullSecrets for Gitea registry + Helm chart support
2026-02-14 15:58:00 +01:00
CI Bot
9264f1c9d8
deploy: demo-app c16090c to dev
2026-02-14 14:51:06 +00:00
root
e4a08e724d
Add generic web-app Helm chart + demo-app dev environment
...
- charts/web-app/: PSS restricted, Ingress with TLS, NetworkPolicy, HPA
- environments/dev/demo-app.yaml: dev values for demo-app
- argocd-apps/demo-app-dev.yaml: ArgoCD Application for dev deployment
2026-02-14 15:11:07 +01:00
root
a3970deb24
Add app-of-apps: declarative Application definitions + root app
...
- argocd-apps/ directory with 7 Application YAMLs matching current specs
- root-app.yaml to manage all Applications from git
- Finalizers added for proper cleanup on deletion
2026-02-14 15:06:02 +01:00
root
6cf51236dc
Add NetworkPolicy: allow nginx-ingress + cert-manager HTTP-01 solver
...
- allow-ingress-from-nginx: permit traffic from ingress-nginx namespace
- allow-cert-manager-http01: permit solver pod ingress (8089) and egress
- Applied to dev, staging, prod namespaces
2026-02-14 14:32:25 +01:00
601bfac348
Add dev/staging/prod namespaces with ResourceQuota + NetworkPolicy
2026-02-14 12:44:11 +01:00
d137b5bdf2
Enterprise: NetworkPolicy default-deny + LimitRange + ResourceQuota
2026-02-14 10:09:08 +01:00
6f4505c977
Enterprise: secure nginx deployment (PSS restricted, resource limits, read-only rootfs)
2026-02-14 10:08:53 +01:00
87b729cdc5
Scale nginx-test to 3 replicas
2026-02-14 08:49:07 +01:00
506d5df47f
Add nginx-test deployment + service
2026-02-14 08:47:09 +01:00
0c54bb2c76
Initial commit
2026-02-14 08:46:58 +01:00
