Erich Blume 6d7071e5ec Add commit-based container tagging prereq to harden-zot-registry chain (#230) ... ## Summary - New Mikado card: `adopt-commit-based-container-tags` — replaces git-tag-triggered container builds with path-based main-branch triggers and manual workflow dispatch - Image tags become `vX.Y.Z-<sha>` (with `-main` suffix for main branch builds, `-nix` for Nix builds), tying versions to the actual bundled app version and exact source commit - `container-tag-and-release` mise task to be renamed to `container-build-and-release`, triggering workflow dispatch with the current HEAD SHA - Added as soft prereq to `harden-zot-registry` Mikado chain ## Test plan - [x] Pre-commit hooks pass (docs-check-index, docs-check-links, etc.) - [ ] Review card content for completeness 🤖 Generated with [Claude Code](https://claude.com/claude-code) Reviewed-on: https://forge.ops.eblu.me/eblume/blumeops/pulls/230		2026-02-20 18:26:27 -08:00
..
adopt-commit-based-container-tags.md	Add commit-based container tagging prereq to harden-zot-registry chain (#230)	2026-02-20 18:26:27 -08:00
enforce-tag-immutability.md	Create C2 Mikado cards for harden-zot-registry (#229)	2026-02-20 17:56:25 -08:00
harden-zot-registry.md	Add commit-based container tagging prereq to harden-zot-registry chain (#230)	2026-02-20 18:26:27 -08:00
register-zot-oidc-client.md	Create C2 Mikado cards for harden-zot-registry (#229)	2026-02-20 17:56:25 -08:00
wire-ci-registry-auth.md	Create C2 Mikado cards for harden-zot-registry (#229)	2026-02-20 17:56:25 -08:00