61fec5e1a9
A1 inline (agent failed on worktree base mismatch). Adapt build-bluebuild.yml to run on the Forgejo self-hosted runner using the same lessons from build-iso.yml debug: - runs-on: nullstone (resolves to veilor-build:43, fedora43+nodejs) - BlueBuild CLI installed in-job from upstream release tarball v0.9.10 - podman/buildah/skopeo/cosign installed via dnf - bluebuild build with podman driver + skopeo inspect + cosign signing - Push primary to Forgejo registry git.s8n.ru/veilor-org/veilor-os - GHCR push gated to github.server_url == 'https://github.com' only - SBOM + attest-build-provenance gated GH-only (Forgejo has no Fulcio) - All third-party actions remain pinned to node20-shipping versions Secrets needed in Forgejo repo settings: - FORGEJO_REGISTRY_TOKEN: PAT with package:write on veilor-org - FORGEJO_REGISTRY_USER: 's8n-ru' (or org member with write scope) |
||
|---|---|---|
| .. | ||
| workflows | ||
| CODEOWNERS | ||
| PULL_REQUEST_TEMPLATE.md | ||