ci: no-SSH local deploy + Dockerfile build fixes #1

Merged

fabi merged 2 commits from fix/ci-deploy-pipeline into main

2026-05-31 15:43:55 +00:00

Author	SHA1	Message	Date
fabi	2a0cc24c07	ci: deploy to the local stack over the runner socket, not SSH Some checks failed deploy / test-backend (pull_request) Failing after 1m6s Details deploy / test-frontend (pull_request) Failing after 1m18s Details deploy / build-and-push (pull_request) Has been skipped Details deploy / deploy (pull_request) Has been skipped Details The runner lives on the deploy host and shares its docker daemon, so the deploy job runs `docker compose pull && up -d` against the central compose via a bind-mounted compose dir (docker:cli + docker_host: "-") instead of appleboy/ssh-action. Drops the SSH_* secrets and recreates only the two mangalord services at the freshly built SHA. Requires /mnt/ssd/docker-data in the runner's container.valid_volumes. Co-Authored-By: Claude Opus 4.8 (1M context) <noreply@anthropic.com>	2026-05-31 17:26:58 +02:00
fabi	a615b0aee7	fix(docker): unblock image builds on this host - backend dep-cache stage stubs only main.rs/lib.rs, but Cargo.toml declares a second [[bin]] crawler at src/bin/crawler.rs, so `cargo build --locked` aborts ("can't find bin crawler"). Stub it too. - runtime was debian:bookworm-slim (glibc 2.36) while rust:1-slim now tracks trixie (glibc 2.41) -> "GLIBC_2.39 not found" at boot. Pin the runtime to debian:trixie-slim so it matches the builder's glibc. - frontend healthcheck probed localhost (-> musl picks IPv6 ::1) but the Node server binds IPv4 0.0.0.0 only -> false "unhealthy". Probe 127.0.0.1. Co-Authored-By: Claude Opus 4.8 (1M context) <noreply@anthropic.com>	2026-05-31 17:26:58 +02:00

Author

SHA1

Message

Date

fabi

2a0cc24c07

ci: deploy to the local stack over the runner socket, not SSH

deploy / test-backend (pull_request) Failing after 1m6s

Details

deploy / test-frontend (pull_request) Failing after 1m18s

Details

deploy / build-and-push (pull_request) Has been skipped

Details

deploy / deploy (pull_request) Has been skipped

Details

The runner lives on the deploy host and shares its docker daemon, so the
deploy job runs `docker compose pull && up -d` against the central compose
via a bind-mounted compose dir (docker:cli + docker_host: "-") instead of
appleboy/ssh-action. Drops the SSH_* secrets and recreates only the two
mangalord services at the freshly built SHA. Requires /mnt/ssd/docker-data
in the runner's container.valid_volumes.

Co-Authored-By: Claude Opus 4.8 (1M context) <noreply@anthropic.com>

2026-05-31 17:26:58 +02:00

fabi

a615b0aee7

fix(docker): unblock image builds on this host

- backend dep-cache stage stubs only main.rs/lib.rs, but Cargo.toml
  declares a second [[bin]] crawler at src/bin/crawler.rs, so
  `cargo build --locked` aborts ("can't find bin crawler"). Stub it too.
- runtime was debian:bookworm-slim (glibc 2.36) while rust:1-slim now
  tracks trixie (glibc 2.41) -> "GLIBC_2.39 not found" at boot. Pin the
  runtime to debian:trixie-slim so it matches the builder's glibc.
- frontend healthcheck probed localhost (-> musl picks IPv6 ::1) but the
  Node server binds IPv4 0.0.0.0 only -> false "unhealthy". Probe 127.0.0.1.

Co-Authored-By: Claude Opus 4.8 (1M context) <noreply@anthropic.com>

2026-05-31 17:26:58 +02:00

ci: no-SSH local deploy + Dockerfile build fixes #1

2 Commits