governance: add .gitignore housekeeping and regular audits; implement audit script and CI step; update templates, proposal, and docs
Some checks failed
ci / test (push) Has been cancelled
Some checks failed
ci / test (push) Has been cancelled
This commit is contained in:
@@ -10,8 +10,10 @@ jobs:
|
||||
steps:
|
||||
- name: Checkout
|
||||
uses: actions/checkout@v3
|
||||
- name: Repo audit
|
||||
run: |
|
||||
bash scripts/audit.sh
|
||||
- name: Build and run tests via Docker
|
||||
run: |
|
||||
docker compose -f docker/compose.yml up --build --abort-on-container-exit --remove-orphans
|
||||
docker compose -f docker/compose.yml down -v --remove-orphans
|
||||
|
||||
|
||||
@@ -50,8 +50,13 @@ This file is copied by scaffolding into new projects. Edit to suit the project w
|
||||
## Clean Repository Roots
|
||||
- Keep the project root minimal and tidy; prefer organizing assets under subdirectories (docs, templates, prompts, scripts, etc.).
|
||||
|
||||
## .gitignore Housekeeping
|
||||
- Include and maintain a `.gitignore` with `runs/` and common OS ignores.
|
||||
|
||||
## CI and Containers (Gitea + Docker)
|
||||
- Use Gitea Actions for CI (`.gitea/workflows/`) with local parity via Docker Compose.
|
||||
- Perform work inside containers when appropriate; reserve host for git/tea and Docker orchestration.
|
||||
- Manage dependencies via Docker images; avoid host installs.
|
||||
- Use explicit container/network names and clean up artifacts (`down -v --remove-orphans`).
|
||||
## Audits
|
||||
- Run regular audits; prompt before release/tags. Save reports under `docs/audits/` and summarize in DevLogs.
|
||||
|
||||
Reference in New Issue
Block a user