git-echo/linux_patch_api
Private
Public Access
1
0
Fork 0
Code Releases 32 Wiki Activity

fix: simplified curl+tar checkout now that giteatoken secret is in DB
Some checks failed
CI/CD Pipeline / Code Format (push) Has been cancelled
Details
CI/CD Pipeline / Clippy Lints (push) Has been cancelled
Details
CI/CD Pipeline / Unit Tests (push) Has been cancelled
Details
CI/CD Pipeline / Security Audit (push) Has been cancelled
Details
CI/CD Pipeline / Build Debian Package (push) Has been cancelled
Details
CI/CD Pipeline / Build RPM Package (push) Has been cancelled
Details
CI/CD Pipeline / Build Alpine Package (push) Has been cancelled
Details
CI/CD Pipeline / Build Arch Package (push) Has been cancelled
Details

Browse Source 
Secret was inserted directly into Gitea MySQL database.
Checkout now uses simple authenticated curl to download archive.
This commit is contained in:
Echo
2026-04-26 23:07:14 +00:00
parent 7a58cf0303
commit 1f2fe167ed
1 changed files with 26 additions and 58 deletions
Download Patch File Download Diff File Expand all files Collapse all files

84
.gitea/workflows/ci.yml
View File

@ -18,13 +18,9 @@ jobs:
steps:
- name: Checkout repository
run: |
set -e
mkdir -p ~/.ssh
ssh-keyscan -H gitea-lxc.moon-dragon.us >> ~/.ssh/known_hosts 2>/dev/null || true
git clone --depth 1 git@gitea-lxc.moon-dragon.us:echo/linux_patch_api.git .
git config --global --add safe.directory "$(pwd)"
git fetch origin "$GITHUB_SHA" --depth=1
git checkout -f "$GITHUB_SHA"
curl -sfL -H "Authorization: token ${{ secrets.giteatoken }}" "https://gitea-lxc.moon-dragon.us/echo/linux_patch_api/archive/${GITHUB_SHA}.tar.gz" -o repo.tar.gz
tar -xzf repo.tar.gz --strip-components=1
rm -f repo.tar.gz
- name: Install Rust
run: |
curl --proto '=https' --tlsv1.2 -sSf https://sh.rustup.rs | sh -s -- -y --default-toolchain stable --profile minimal
@ -40,13 +36,9 @@ jobs:
steps:
- name: Checkout repository
run: |
set -e
mkdir -p ~/.ssh
ssh-keyscan -H gitea-lxc.moon-dragon.us >> ~/.ssh/known_hosts 2>/dev/null || true
git clone --depth 1 git@gitea-lxc.moon-dragon.us:echo/linux_patch_api.git .
git config --global --add safe.directory "$(pwd)"
git fetch origin "$GITHUB_SHA" --depth=1
git checkout -f "$GITHUB_SHA"
curl -sfL -H "Authorization: token ${{ secrets.giteatoken }}" "https://gitea-lxc.moon-dragon.us/echo/linux_patch_api/archive/${GITHUB_SHA}.tar.gz" -o repo.tar.gz
tar -xzf repo.tar.gz --strip-components=1
rm -f repo.tar.gz
- name: Install Rust
run: |
curl --proto '=https' --tlsv1.2 -sSf https://sh.rustup.rs | sh -s -- -y --default-toolchain stable --profile minimal
@ -66,13 +58,9 @@ jobs:
steps:
- name: Checkout repository
run: |
set -e
mkdir -p ~/.ssh
ssh-keyscan -H gitea-lxc.moon-dragon.us >> ~/.ssh/known_hosts 2>/dev/null || true
git clone --depth 1 git@gitea-lxc.moon-dragon.us:echo/linux_patch_api.git .
git config --global --add safe.directory "$(pwd)"
git fetch origin "$GITHUB_SHA" --depth=1
git checkout -f "$GITHUB_SHA"
curl -sfL -H "Authorization: token ${{ secrets.giteatoken }}" "https://gitea-lxc.moon-dragon.us/echo/linux_patch_api/archive/${GITHUB_SHA}.tar.gz" -o repo.tar.gz
tar -xzf repo.tar.gz --strip-components=1
rm -f repo.tar.gz
- name: Install Rust
run: |
curl --proto '=https' --tlsv1.2 -sSf https://sh.rustup.rs | sh -s -- -y --default-toolchain stable --profile minimal
@ -91,13 +79,9 @@ jobs:
steps:
- name: Checkout repository
run: |
set -e
mkdir -p ~/.ssh
ssh-keyscan -H gitea-lxc.moon-dragon.us >> ~/.ssh/known_hosts 2>/dev/null || true
git clone --depth 1 git@gitea-lxc.moon-dragon.us:echo/linux_patch_api.git .
git config --global --add safe.directory "$(pwd)"
git fetch origin "$GITHUB_SHA" --depth=1
git checkout -f "$GITHUB_SHA"
curl -sfL -H "Authorization: token ${{ secrets.giteatoken }}" "https://gitea-lxc.moon-dragon.us/echo/linux_patch_api/archive/${GITHUB_SHA}.tar.gz" -o repo.tar.gz
tar -xzf repo.tar.gz --strip-components=1
rm -f repo.tar.gz
- name: Install Rust
run: |
curl --proto '=https' --tlsv1.2 -sSf https://sh.rustup.rs | sh -s -- -y --default-toolchain stable --profile minimal
@ -119,13 +103,9 @@ jobs:
steps:
- name: Checkout repository
run: |
set -e
mkdir -p ~/.ssh
ssh-keyscan -H gitea-lxc.moon-dragon.us >> ~/.ssh/known_hosts 2>/dev/null || true
git clone --depth 1 git@gitea-lxc.moon-dragon.us:echo/linux_patch_api.git .
git config --global --add safe.directory "$(pwd)"
git fetch origin "$GITHUB_SHA" --depth=1
git checkout -f "$GITHUB_SHA"
curl -sfL -H "Authorization: token ${{ secrets.giteatoken }}" "https://gitea-lxc.moon-dragon.us/echo/linux_patch_api/archive/${GITHUB_SHA}.tar.gz" -o repo.tar.gz
tar -xzf repo.tar.gz --strip-components=1
rm -f repo.tar.gz
- name: Install Rust
run: |
curl --proto '=https' --tlsv1.2 -sSf https://sh.rustup.rs | sh -s -- -y --default-toolchain stable --profile minimal
@ -154,13 +134,9 @@ jobs:
steps:
- name: Checkout repository
run: |
set -e
mkdir -p ~/.ssh
ssh-keyscan -H gitea-lxc.moon-dragon.us >> ~/.ssh/known_hosts 2>/dev/null || true
git clone --depth 1 git@gitea-lxc.moon-dragon.us:echo/linux_patch_api.git .
git config --global --add safe.directory "$(pwd)"
git fetch origin "$GITHUB_SHA" --depth=1
git checkout -f "$GITHUB_SHA"
curl -sfL -H "Authorization: token ${{ secrets.giteatoken }}" "https://gitea-lxc.moon-dragon.us/echo/linux_patch_api/archive/${GITHUB_SHA}.tar.gz" -o repo.tar.gz
tar -xzf repo.tar.gz --strip-components=1
rm -f repo.tar.gz
- name: Install Rust
run: |
curl --proto '=https' --tlsv1.2 -sSf https://sh.rustup.rs | sh -s -- -y --default-toolchain stable --profile minimal
@ -191,23 +167,19 @@ jobs:
steps:
- name: Checkout repository
run: |
set -e
mkdir -p ~/.ssh
ssh-keyscan -H gitea-lxc.moon-dragon.us >> ~/.ssh/known_hosts 2>/dev/null || true
git clone --depth 1 git@gitea-lxc.moon-dragon.us:echo/linux_patch_api.git .
git config --global --add safe.directory "$(pwd)"
git fetch origin "$GITHUB_SHA" --depth=1
git checkout -f "$GITHUB_SHA"
curl -sfL -H "Authorization: token ${{ secrets.giteatoken }}" "https://gitea-lxc.moon-dragon.us/echo/linux_patch_api/archive/${GITHUB_SHA}.tar.gz" -o repo.tar.gz
tar -xzf repo.tar.gz --strip-components=1
rm -f repo.tar.gz
- name: Install Rust
run: |
apk add --no-cache curl bash git openssh-client
apk add --no-cache curl bash
curl --proto '=https' --tlsv1.2 -sSf https://sh.rustup.rs | sh -s -- -y --default-toolchain stable --profile minimal
. "$HOME/.cargo/env"
rustup target add x86_64-unknown-linux-musl
echo "$HOME/.cargo/bin" >> "$GITHUB_PATH"
- name: Install build dependencies
run: |
apk add --no-cache alpine-sdk rust cargo openssl-dev elogind-dev musl-dev abuild gcc
apk add --no-cache alpine-sdk rust cargo openssl-dev elogind-dev musl-dev git abuild gcc
- name: Build release binary
run: cargo build --release --target x86_64-unknown-linux-musl
- name: Build Alpine package
@ -231,13 +203,9 @@ jobs:
steps:
- name: Checkout repository
run: |
set -e
mkdir -p ~/.ssh
ssh-keyscan -H gitea-lxc.moon-dragon.us >> ~/.ssh/known_hosts 2>/dev/null || true
git clone --depth 1 git@gitea-lxc.moon-dragon.us:echo/linux_patch_api.git .
git config --global --add safe.directory "$(pwd)"
git fetch origin "$GITHUB_SHA" --depth=1
git checkout -f "$GITHUB_SHA"
curl -sfL -H "Authorization: token ${{ secrets.giteatoken }}" "https://gitea-lxc.moon-dragon.us/echo/linux_patch_api/archive/${GITHUB_SHA}.tar.gz" -o repo.tar.gz
tar -xzf repo.tar.gz --strip-components=1
rm -f repo.tar.gz
- name: Install Rust
run: |
curl --proto '=https' --tlsv1.2 -sSf https://sh.rustup.rs | sh -s -- -y --default-toolchain stable --profile minimal