24db0e97f6
feat: add Gitea NFS PV, declarative deployment, and wire into runmefirst.sh
Build and Push / lint-and-test (push) Has been cancelled
Build and Push / build-services (map[cmd:python -m services.adapters.broker_adapter name:broker-adapter]) (push) Has been cancelled
Build and Push / build-services (map[cmd:python -m services.aggregation.worker name:aggregation]) (push) Has been cancelled
Build and Push / build-services (map[cmd:python -m services.extractor.worker name:extractor]) (push) Has been cancelled
Build and Push / build-services (map[cmd:python -m services.ingestion.worker name:ingestion]) (push) Has been cancelled
Build and Push / build-services (map[cmd:python -m services.lake_publisher.worker name:lake-publisher]) (push) Has been cancelled
Build and Push / build-services (map[cmd:python -m services.parser.worker name:parser]) (push) Has been cancelled
Build and Push / build-services (map[cmd:python -m services.recommendation.worker name:recommendation]) (push) Has been cancelled
Build and Push / build-services (map[cmd:python -m services.scheduler.app name:scheduler]) (push) Has been cancelled
Build and Push / build-services (map[cmd:uvicorn services.api.app:app --host 0.0.0.0 --port 8000 name:query-api]) (push) Has been cancelled
Build and Push / build-services (map[cmd:uvicorn services.risk.app:app --host 0.0.0.0 --port 8000 name:risk]) (push) Has been cancelled
Build and Push / build-services (map[cmd:uvicorn services.symbol_registry.app:app --host 0.0.0.0 --port 8000 name:symbol-registry]) (push) Has been cancelled
Build and Push / build-services (map[cmd:uvicorn services.trading.app:app --host 0.0.0.0 --port 8000 name:trading-engine]) (push) Has been cancelled
Build and Push / build-dashboard (push) Has been cancelled
Build and Push / build-superset (push) Has been cancelled
Build and Push / integration-test (push) Has been cancelled
Build and Push / beta-gate (push) Has been cancelled
2026-04-28 14:29:58 +00:00
7efdddd794
fix: bake Woodpecker OAuth2 + agent secret into Helm values
...
Permanent fix for cluster rebuilds:
- OAuth2 client_id/secret baked into woodpecker/values.yaml
- WOODPECKER_AGENT_SECRET shared between server and agents
- runmefirst.sh uses baked creds if present, creates fresh ones only
if values.yaml still has placeholders
- Agents survive DB wipes since they auth via shared secret
2026-04-21 02:12:58 +00:00
48fed18078
feat: per-stage PostgreSQL users for database isolation (stonks_beta, stonks_paper)
2026-04-19 23:17:22 +00:00
021efba294
feat: auto-run migrations via psql init container on scheduler startup
2026-04-19 22:37:50 +00:00
5c63264393
feat: stage-isolated infrastructure — separate Postgres DBs, Redis DBs, and MinIO bucket prefixes per stage
2026-04-19 22:20:03 +00:00
651ef838ce
fix: add Argo Rollouts install, secrets seeding, and Kargo admin password fix to runmefirst.sh
2026-04-19 21:58:48 +00:00
2d40d70975
ci: remove remaining ghcr-credentials from inttest seed/minio pod overrides
2026-04-19 06:45:46 +00:00
dad9b46fa2
ci: pre-create kargo-controller SA with Helm labels, fix JSON pod annotations, remove --wait from woodpecker helm
2026-04-19 05:28:09 +00:00
00a6485e70
ci: sync esnixi changes - CA download, dockerhub auth, local-path storage, proxy exclusions, pod annotations
2026-04-19 05:14:13 +00:00
9e39d59afa
ci: add woodpecker Kyverno proxy CA policy with NO_PROXY for gRPC
2026-04-19 03:00:06 +00:00
76dd58c1dc
ci: final pipeline fixes - kargo SA workaround, oauth2 flow, timeouts
2026-04-19 02:41:41 +00:00
8bee515bd4
ci: fix runmelast hanging, add proxy CA injection, clean SA/CRD leftovers on redeploy
2026-04-19 02:01:18 +00:00
1607baba90
ci: persist live fixes to pipeline scripts - grpc addr, storage, remove netpol, webhook config
2026-04-18 21:14:51 +00:00
Celes Renata