92a3a6a4b3
ci(netty): use setuid sudo wrapper for deploy
...
quality / changes (push) Successful in 1s
quality / Nix Format Check (push) Successful in 4s
quality / Flake Check (push) Successful in 12s
quality / Deploy netty (push) Successful in 5s
Made-with: Cursor
2026-04-18 22:53:39 -04:00
ab724b4ac1
chore(netty): note purpose of cacheRoot
...
quality / changes (push) Successful in 2s
quality / Nix Format Check (push) Successful in 5s
quality / Flake Check (push) Successful in 13s
quality / Deploy netty (push) Failing after 1s
Made-with: Cursor
2026-04-18 22:52:45 -04:00
94c8e91190
ci(netty): disable DynamicUser on runner (implies NoNewPrivileges + RestrictSUIDSGID that break sudo)
...
quality / changes (push) Failing after 0s
quality / Flake Check (push) Has been skipped
quality / Nix Format Check (push) Has been skipped
quality / Deploy netty (push) Has been skipped
Made-with: Cursor
2026-04-18 22:50:46 -04:00
bac6f96814
ci(netty): disable NoNewPrivileges on runner so sudo works for deploy
...
quality / changes (push) Successful in 1s
quality / Nix Format Check (push) Successful in 5s
quality / Flake Check (push) Successful in 13s
quality / Deploy netty (push) Failing after 1s
Made-with: Cursor
2026-04-18 22:48:37 -04:00
a1f22bd7b4
ci(netty): include nix, nixos-rebuild, sudo in runner hostPackages
...
quality / changes (push) Successful in 1s
quality / Nix Format Check (push) Successful in 29s
quality / Flake Check (push) Successful in 42s
quality / Deploy netty (push) Failing after 1s
Made-with: Cursor
2026-04-18 22:36:50 -04:00
0aab0a4d61
ci: drop darwin shims, rebuild locally on netty runner
...
quality / changes (push) Successful in 2s
quality / Flake Check (push) Failing after 1s
quality / Nix Format Check (push) Failing after 1s
quality / Deploy netty (push) Has been skipped
- remove macOS-era `sudo mkdir /Users/rathi/...` shim steps from flake-check
and nix-format (Linux runner, paths don't exist, gitea-runner has no sudo)
- deploy-netty now runs `sudo nixos-rebuild switch --flake .#netty` directly
on the runner (it *is* netty), no SSH, no `just switch-netty`
- grant gitea-runner NOPASSWD sudo for nixos-rebuild only
- apply current nixfmt to home/scripts.nix, hermes-gateway.nix, devshells.nix
Made-with: Cursor
2026-04-18 22:33:25 -04:00
ec2f23757b
ci: run quality on forgejo native runner, fix runner user
...
quality / changes (push) Successful in 5s
quality / Flake Check (push) Failing after 1s
quality / Nix Format Check (push) Failing after 1s
quality / Deploy netty (push) Has been skipped
- switch all jobs to runs-on: native so the netty forgejo runner picks them up
- deploy-netty now runs locally on netty via `just switch-netty` (no SSH)
- fix tmpfiles owner: gitea-actions-runner creates user `gitea-runner`, not `forgejo-runner`
Made-with: Cursor
2026-04-18 22:19:25 -04:00
ab03b04e8e
update runners
2026-04-06 02:04:57 +00:00
