jwright/bztmon-site
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

CI: digest-bump pushes a branch for manual PR (no broad token needed)

Browse Source
This commit is contained in:
Jonathon Wright
2026-06-17 20:11:13 +10:00
parent 74cbf3af26
commit fbad7a18db
1 changed files with 13 additions and 6 deletions
Download Patch File Download Diff File Expand all files Collapse all files
scripts/bump-digest.sh
+13 -6
View File
@@ -47,9 +47,16 @@ git config user.email "ci@bztmon.com"
git commit -am "bztmon-site: deploy ${TAG}" git commit -am "bztmon-site: deploy ${TAG}"
git push origin "${BRANCH}" git push origin "${BRANCH}"
# --- Open the PR (never auto-merge) ---------------------------------------- # --- PR (never auto-merge) -------------------------------------------------
curl -fsSL -X POST "${GITEA_API}/repos/jwrong96/home-ops/pulls" \ # Default (least-privilege): just push the branch — Jonathon opens+merges the PR (the approval
-H "Authorization: token ${GITEA_TOKEN}" \ # gate + the ArgoCD trigger). Only auto-open a PR if a GITEA_TOKEN is provided.
-H "Content-Type: application/json" \ if [[ -n "${GITEA_TOKEN:-}" ]]; then
-d "{\"head\":\"${BRANCH}\",\"base\":\"main\",\"title\":\"bztmon-site: deploy ${TAG}\",\"body\":\"Automated digest bump.\\n\\nImage: \`${REF}\`\\n\\nMerge to roll out via ArgoCD.\"}" curl -fsSL -X POST "${GITEA_API}/repos/jwrong96/home-ops/pulls" \
echo ">> PR opened for ${BRANCH}" -H "Authorization: token ${GITEA_TOKEN}" \
-H "Content-Type: application/json" \
-d "{\"head\":\"${BRANCH}\",\"base\":\"main\",\"title\":\"bztmon-site: deploy ${TAG}\",\"body\":\"Automated digest bump.\\n\\nImage: \`${REF}\`\\n\\nMerge to roll out via ArgoCD.\"}"
echo ">> PR opened for ${BRANCH}"
else
echo ">> branch ${BRANCH} pushed (image ${REF})."
echo ">> open the PR to roll out: https://gitea.bztmon.org/jwrong96/home-ops/compare/main...${BRANCH}"
fi