Tdelion/appai 6/hosting

[timothedelion]

Workflow Features:

Triggers:

• Push to main - Builds and pushes on every commit to main
• Version tags (v*..) - Builds and pushes when you tag a release
• Pull requests - Builds but doesn't push (for testing)
• Manual trigger - Can run manually from GitHub UI

Docker Tags Generated:

• latest - For main branch pushes
• v1.2.3, v1.2, v1 - Semantic versioning tags
• main- - Short commit SHA for traceability
• pr-123 - PR number for pull request builds

Features:

• Multi-platform builds (amd64 and arm64)
• Docker layer caching for faster builds
• Only pushes on non-PR events (PRs just build to verify)

Required GitHub Secrets:

You need to add these secrets to your GitHub repository (Settings → Secrets and variables → Actions):

1. DOCKER_REGISTRY_URL - Your private registry URL (e.g., registry.example.com)
2. DOCKER_REGISTRY_USERNAME - Username for registry authentication
3. DOCKER_REGISTRY_PASSWORD - Password or token for registry authentication

Usage Example:

Once you provide the registry URL, the images will be pushed to:
<REGISTRY_URL>/secops-mcp-server:latest
<REGISTRY_URL>/secops-mcp-server:v0.5.0
<REGISTRY_URL>/secops-mcp-server:main-abc1234

Let me know your private registry address when you're ready, and I can help you set up the secrets or adjust the
configuration if needed!

[linear]

APPAI-6 MCP : Run an assessment about how to host our MCP server and which cost

[pavelpanfilov]

let's use GG org ghcr.io for now

[pavelpanfilov]

A few items missing:

• add a helm unittest job & test spec
• validate both helm values files with helm template
• add a semver job to release helm chart when either chart/** modified or new docker image released (bumping app version in Chart.yaml or tag in default values)
• publish chart to ghcr.io

General recommendation would be splitting regular CI jobs for PR (unit tests, docker build, chart unittests etc) with release and publish jobs by 2 different workflows.