eblume/blumeops
1
1
Fork 0
Code Issues Pull requests Projects Releases 83 Packages Wiki Activity Actions
blumeops/docs/how-to/plans/plans.md
Erich Blume 651fed8f1a Transcribe backlog tasks into plan documents (#151) 
## Summary
- **adopt-oidc-provider:** Dex-based OIDC identity provider for SSO across services (status: Planning — service dependency/recovery design needed)
- **harden-zot-registry:** OIDC + API key auth and tag immutability for zot (depends on OIDC provider + Dagger CI)
- **forgejo-actions-dashboard:** Custom textfile Prometheus exporter + Grafana dashboard for Forgejo Actions CI metrics
- **operationalize-reolink-camera:** Cloud-free Frigate NVR with ONNX detection, NFS ring buffer recording to sifaka (depends on network segmentation)
- **add-unifi-pulumi-stack:** Expanded with NFS security motivation, BlumeOps Services subnet, IoT/appliance segregation, firewall rules

## Test plan
- [x] Pre-commit hooks pass (all 3 commits)
- [x] `docs-check-links` passes
- [x] `docs-check-index` passes
- [x] `docs-check-filenames` passes

🤖 Generated with [Claude Code](https://claude.com/claude-code)

Reviewed-on: https://forge.ops.eblu.me/eblume/blumeops/pulls/151
2026-02-11 11:47:23 -08:00

1.4 KiB
Raw Blame History

title tags
Plans
how-to
plans

Plans

Migration and transition plans for upcoming infrastructure changes. Each plan is a how-to document that captures the full context, steps, and verification criteria for a future execution session.

Plans differ from regular how-to guides in that they describe work that has been designed but not yet executed. Once a plan is completed, it may be archived or converted into a standard how-to guide.

Plan Status Description
migrate-forgejo-from-brew Planned Transition Forgejo from Homebrew to source-built binary with LaunchAgent
add-unifi-pulumi-stack Planned Add Pulumi IaC for UniFi Express 7 home network
adopt-dagger-ci Planned Adopt Dagger as CI/CD build engine, migrate docs artifacts to Forgejo packages
upstream-fork-strategy Planned Stacked-branch forking strategy for tracking upstream projects
adopt-oidc-provider Planning Deploy OIDC identity provider for SSO across services
harden-zot-registry Planned Add authentication and tag immutability to zot registry
forgejo-actions-dashboard Planned Grafana dashboard and custom Prometheus exporter for Forgejo Actions CI metrics
operationalize-reolink-camera Planned Cloud-free NVR with Frigate, object detection, and ring buffer recording to sifaka