eblume/blumeops
1
1
Fork 0
Code Issues Pull requests Projects Releases 83 Packages Wiki Activity Actions
blumeops/argocd/manifests
History
Erich Blume fd0bebb0fc
All checks were successful
Build Container / detect (push) Successful in 3s
Details
Build Container / build-dockerfile (alloy) (push) Successful in 12s
Details
Build Container / build-dockerfile (ntfy) (push) Successful in 11s
Details
Build Container / build-nix (alloy) (push) Successful in 20s
Details
Build Container / build-nix (authentik) (push) Successful in 6m10s
Details
Build Container / build-nix (authentik-redis) (push) Successful in 20s
Details
Build Container / build-nix (ntfy) (push) Successful in 6s
Details
Localize authentik-redis container (#309) 
## Summary

- Replace upstream `docker.io/library/redis:7-alpine` (Redis 7.4.8) with a nix-built container using Redis 8.2.3 from nixpkgs
- Introduce **attached service pattern**: `parent` field in service-versions.yaml, `<parent>-<component>` naming convention, and `assert pkgs.redis.version == version` in default.nix to prevent silent version drift on `flake.lock` updates
- Document the pattern in [[review-services]] so future attached services slot in cleanly
- Backfill `parent: grafana` on existing `grafana-sidecar` entry

## Version drift protection

1. `flake.lock` update bumps nixpkgs redis → `assert` in `default.nix` breaks `nix-build`
2. Developer updates `version` in `default.nix` → prek's `container-version-check` demands matching `service-versions.yaml` update
3. Both must agree before commit succeeds

## Test plan

- [ ] Build container from branch on ringtail (`mise run container-build-and-release authentik-redis`)
- [ ] Update kustomization `newTag` to branch-built image tag
- [ ] Sync authentik ArgoCD app from branch (`argocd app set authentik --revision localize-redis && argocd app sync authentik`)
- [ ] Verify Authentik login, session persistence, and task queue still work
- [ ] After merge: C0 follow-up to update `newTag` to the main-built image tag

🤖 Generated with [Claude Code](https://claude.com/claude-code)

Reviewed-on: #309
2026-03-24 13:27:36 -07:00
..
1password-connect
alloy-k8s C2: Deploy infrastructure alerting pipeline (#303) 2026-03-22 14:52:56 -07:00
alloy-ringtail Update kustomization tags to OCI-labeled builds (613f05d) 2026-03-19 06:34:12 -07:00
alloy-tracing-ringtail Update kustomization tags to OCI-labeled builds (613f05d) 2026-03-19 06:34:12 -07:00
argocd Add ExternalSecret default fields to prevent ArgoCD drift 2026-03-05 09:11:23 -08:00
authentik Localize authentik-redis container (#309) 2026-03-24 13:27:36 -07:00
cloudnative-pg Port CloudNative-PG off Helm to direct release manifest (#268) 2026-02-25 17:37:53 -08:00
cv Update kustomization tags to OCI-labeled builds (613f05d) 2026-03-19 06:34:12 -07:00
databases Pin blumeops-pg to PostgreSQL 18.3 2026-02-27 16:25:32 -08:00
devpi Update kustomization tags to OCI-labeled builds (613f05d) 2026-03-19 06:34:12 -07:00
docs Update docs release to v1.14.3 2026-03-22 18:20:41 -07:00
external-secrets
forgejo-runner Upgrade Dagger engine from v0.20.0 to v0.20.1 2026-03-06 20:41:02 -08:00
frigate Upgrade Frigate 0.17.0-rc2 → 0.17.1, add motion retention tier 2026-03-24 07:30:18 -07:00
grafana C2: Deploy infrastructure alerting pipeline (#303) 2026-03-22 14:52:56 -07:00
grafana-config Move Alerts dashboard into Infrastructure Alerts folder 2026-03-23 21:20:14 -07:00
homepage Decommission JobSync service (#308) 2026-03-24 08:44:23 -07:00
immich Fix mirror org refs in ArgoCD apps and widen credential template (#266) 2026-02-25 06:55:53 -08:00
kiwix Update docs and kiwix kustomization tags to 613f05d builds 2026-03-19 06:40:49 -07:00
kube-state-metrics Add :kustomized sentinel tag to manifest images, review devpi 2026-03-06 08:15:06 -08:00
kube-state-metrics-ringtail Add :kustomized sentinel tag to manifest images, review devpi 2026-03-06 08:15:06 -08:00
loki C0 update deployment for loki to 3.6.7 2026-03-20 16:06:29 -07:00
mealie Update kustomization tags to OCI-labeled builds (613f05d) 2026-03-19 06:34:12 -07:00
miniflux Update kustomization tags to OCI-labeled builds (613f05d) 2026-03-19 06:34:12 -07:00
navidrome Update kustomization tags to OCI-labeled builds (613f05d) 2026-03-19 06:34:12 -07:00
ntfy Update ntfy tag to main build v2.19.2-d1dac0c-nix 2026-03-23 10:36:34 -07:00
nvidia-device-plugin Add :kustomized sentinel tag to manifest images, review devpi 2026-03-06 08:15:06 -08:00
ollama Bump Ollama memory to 24Gi and enable flash attention 2026-03-11 20:33:22 -07:00
prometheus C2: Deploy infrastructure alerting pipeline (#303) 2026-03-22 14:52:56 -07:00
tailscale-operator Expose Forgejo publicly at forge.eblu.me (#278) 2026-03-03 08:40:41 -08:00
tailscale-operator-base Revert Tailscale operator to v1.94.2 — images not yet published 2026-03-22 19:41:40 -07:00
tailscale-operator-ringtail
tempo Add :kustomized sentinel tag to manifest images, review devpi 2026-03-06 08:15:06 -08:00
teslamate Update kustomization tags to OCI-labeled builds (613f05d) 2026-03-19 06:34:12 -07:00
torrent Update kustomization tags to OCI-labeled builds (613f05d) 2026-03-19 06:34:12 -07:00
unpoller Update kustomization tags to OCI-labeled builds (613f05d) 2026-03-19 06:34:12 -07:00