Northern-Thailand-Ping-River-Monitor

grabowski/Northern-Thailand-Ping-River-Monitor

Fork 0

Commit Graph

Author	SHA1	Message	Date
grabowski	505c65f614	Complete workflow token migration and pip fixes Token Migration (GITHUB_TOKEN GH_TOKEN): - Update CI workflow to use GH_TOKEN secret - Update Release workflow to use GH_TOKEN secret - Update Security workflow to use GH_TOKEN secret - Maintain environment variable compatibility - Update token validation messages Pip Installation Improvements: - Add --root-user-action=ignore to all pip commands - Eliminates 'Running pip as root user' warnings - Applied across all workflow jobs consistently - Improves workflow reliability and log cleanliness Affected Workflows: - CI: Fixed token references + pip warnings - Release: Fixed token references + pip warnings - Security: Fixed token references + pip warnings + validation messages Changes Summary: - 3 workflow files updated - 37 insertions, 37 deletions (clean replacements) - Consistent token naming across all workflows - All pip commands now use --root-user-action=ignore flag Benefits: - Gitea-compatible secret naming (GH_TOKEN) - Cleaner workflow logs without pip warnings - Better error handling and validation - Consistent token usage across all pipelines	2025-08-12 16:50:09 +07:00
grabowski	b13a4fe400	🔧 Fix: Comprehensive GitHub token integration for all Docker workflows All checks were successful Security & Dependency Updates / Dependency Security Scan (push) Successful in 23s Details Security & Dependency Updates / Docker Security Scan (push) Successful in 1m27s Details Security & Dependency Updates / License Compliance (push) Successful in 12s Details Security & Dependency Updates / Check for Dependency Updates (push) Successful in 16s Details Security & Dependency Updates / Code Quality Metrics (push) Successful in 9s Details Security & Dependency Updates / Security Summary (push) Successful in 6s Details ✨ Complete GitHub Token Support: - Add github-token parameter to all Trivy actions (security + release) - Add GITHUB_TOKEN environment variable to all Docker build steps - Add global GITHUB_TOKEN environment to CI and release workflows - Ensure consistent token usage across all workflow jobs 🐳 Docker Workflow Improvements: - CI workflow: Docker build with GitHub token for base image pulls - Security workflow: Docker build + Trivy scans with token - Release workflow: Docker build + security scans with token - Better authentication for all container operations Authentication Benefits: - Eliminates GitHub API rate limiting issues - Fixes 'Bad credentials' errors in Trivy scans - Improves reliability of Docker base image pulls - Ensures consistent authentication across all workflows Affected Workflows: - CI/CD Pipeline: Enhanced Docker builds - Security Scans: Fixed Trivy authentication - Release Pipeline: Complete token integration	2025-08-12 16:26:02 +07:00
grabowski	af62cfef0b	Initial commit: Northern Thailand Ping River Monitor v3.1.0 Some checks failed Security & Dependency Updates / Dependency Security Scan (push) Successful in 29s Details Security & Dependency Updates / Docker Security Scan (push) Failing after 53s Details Security & Dependency Updates / License Compliance (push) Successful in 13s Details Security & Dependency Updates / Check for Dependency Updates (push) Successful in 19s Details Security & Dependency Updates / Code Quality Metrics (push) Successful in 11s Details Security & Dependency Updates / Security Summary (push) Successful in 7s Details Features: - Real-time water level monitoring for Ping River Basin (16 stations) - Coverage from Chiang Dao to Nakhon Sawan in Northern Thailand - FastAPI web interface with interactive dashboard and station management - Multi-database support (SQLite, MySQL, PostgreSQL, InfluxDB, VictoriaMetrics) - Comprehensive monitoring with health checks and metrics collection - Docker deployment with Grafana integration - Production-ready architecture with enterprise-grade observability CI/CD & Automation: - Complete Gitea Actions workflows for CI/CD, security, and releases - Multi-Python version testing (3.9-3.12) - Multi-architecture Docker builds (amd64, arm64) - Daily security scanning and dependency monitoring - Automated documentation generation - Performance testing and validation Production Ready: - Type safety with Pydantic models and comprehensive type hints - Data validation layer with range checking and error handling - Rate limiting and request tracking for API protection - Enhanced logging with rotation, colors, and performance metrics - Station management API for dynamic CRUD operations - Comprehensive documentation and deployment guides Technical Stack: - Python 3.9+ with FastAPI and Pydantic - Multi-database architecture with adapter pattern - Docker containerization with multi-stage builds - Grafana dashboards for visualization - Gitea Actions for CI/CD automation - Enterprise monitoring and alerting Ready for deployment to B4L infrastructure!	2025-08-12 15:40:24 +07:00

Author

SHA1

Message

Date

grabowski

505c65f614

Complete workflow token migration and pip fixes

Token Migration (GITHUB_TOKEN  GH_TOKEN):
- Update CI workflow to use GH_TOKEN secret
- Update Release workflow to use GH_TOKEN secret
- Update Security workflow to use GH_TOKEN secret
- Maintain environment variable compatibility
- Update token validation messages

 Pip Installation Improvements:
- Add --root-user-action=ignore to all pip commands
- Eliminates 'Running pip as root user' warnings
- Applied across all workflow jobs consistently
- Improves workflow reliability and log cleanliness

 Affected Workflows:
- CI: Fixed token references + pip warnings
- Release: Fixed token references + pip warnings
- Security: Fixed token references + pip warnings + validation messages

 Changes Summary:
- 3 workflow files updated
- 37 insertions, 37 deletions (clean replacements)
- Consistent token naming across all workflows
- All pip commands now use --root-user-action=ignore flag

 Benefits:
- Gitea-compatible secret naming (GH_TOKEN)
- Cleaner workflow logs without pip warnings
- Better error handling and validation
- Consistent token usage across all pipelines

2025-08-12 16:50:09 +07:00

grabowski

b13a4fe400

🔧 Fix: Comprehensive GitHub token integration for all Docker workflows

Security & Dependency Updates / Dependency Security Scan (push) Successful in 23s

Details

Security & Dependency Updates / Docker Security Scan (push) Successful in 1m27s

Details

Security & Dependency Updates / License Compliance (push) Successful in 12s

Details

Security & Dependency Updates / Check for Dependency Updates (push) Successful in 16s

Details

Security & Dependency Updates / Code Quality Metrics (push) Successful in 9s

Details

Security & Dependency Updates / Security Summary (push) Successful in 6s

Details

✨ Complete GitHub Token Support:
- Add github-token parameter to all Trivy actions (security + release)
- Add GITHUB_TOKEN environment variable to all Docker build steps
- Add global GITHUB_TOKEN environment to CI and release workflows
- Ensure consistent token usage across all workflow jobs

🐳 Docker Workflow Improvements:
- CI workflow: Docker build with GitHub token for base image pulls
- Security workflow: Docker build + Trivy scans with token
- Release workflow: Docker build + security scans with token
- Better authentication for all container operations

 Authentication Benefits:
- Eliminates GitHub API rate limiting issues
- Fixes 'Bad credentials' errors in Trivy scans
- Improves reliability of Docker base image pulls
- Ensures consistent authentication across all workflows

 Affected Workflows:
- CI/CD Pipeline: Enhanced Docker builds
- Security Scans: Fixed Trivy authentication
- Release Pipeline: Complete token integration

2025-08-12 16:26:02 +07:00

grabowski

af62cfef0b

Initial commit: Northern Thailand Ping River Monitor v3.1.0

Security & Dependency Updates / Dependency Security Scan (push) Successful in 29s

Details

Security & Dependency Updates / Docker Security Scan (push) Failing after 53s

Details

Security & Dependency Updates / License Compliance (push) Successful in 13s

Details

Security & Dependency Updates / Check for Dependency Updates (push) Successful in 19s

Details

Security & Dependency Updates / Code Quality Metrics (push) Successful in 11s

Details

Security & Dependency Updates / Security Summary (push) Successful in 7s

Details

Features:
- Real-time water level monitoring for Ping River Basin (16 stations)
- Coverage from Chiang Dao to Nakhon Sawan in Northern Thailand
- FastAPI web interface with interactive dashboard and station management
- Multi-database support (SQLite, MySQL, PostgreSQL, InfluxDB, VictoriaMetrics)
- Comprehensive monitoring with health checks and metrics collection
- Docker deployment with Grafana integration
- Production-ready architecture with enterprise-grade observability

 CI/CD & Automation:
- Complete Gitea Actions workflows for CI/CD, security, and releases
- Multi-Python version testing (3.9-3.12)
- Multi-architecture Docker builds (amd64, arm64)
- Daily security scanning and dependency monitoring
- Automated documentation generation
- Performance testing and validation

 Production Ready:
- Type safety with Pydantic models and comprehensive type hints
- Data validation layer with range checking and error handling
- Rate limiting and request tracking for API protection
- Enhanced logging with rotation, colors, and performance metrics
- Station management API for dynamic CRUD operations
- Comprehensive documentation and deployment guides

 Technical Stack:
- Python 3.9+ with FastAPI and Pydantic
- Multi-database architecture with adapter pattern
- Docker containerization with multi-stage builds
- Grafana dashboards for visualization
- Gitea Actions for CI/CD automation
- Enterprise monitoring and alerting

 Ready for deployment to B4L infrastructure!

2025-08-12 15:40:24 +07:00

3 Commits