<![CDATA[New blog post: Tag-Driven Deployments: How MastoSum Ships Itself with Forgejo Actions and Rootless Podman]]>New blog post: Tag-Driven Deployments: How MastoSum Ships Itself with Forgejo Actions and Rootless Podman

The pipeline is tag-driven and fully automated. A git push v0.2.9 triggers a Forgejo Actions workflow that builds a UBI10-based image, cosign-signs it, and writes a trigger file. A systemd path unit picks it up, verifies the signature, pulls by digest, and restarts the four app services. No SSH, no webhook receiver, no additional daemon. The CI runner lives in the same rootless Podman user context as the app it deploys.

The filesystem is the API between CI and host.

Link Preview Image
Tag-Driven Deployments: How MastoSum Ships Itself with Forgejo Actions and Rootless Podman

A walk through the MastoSum deployment pipeline: a version tag triggers Forgejo Actions, builds and signs a UBI-based image, then hands deployment to a rootl...

favicon

Larvitz Blog (blog.hofstede.it)

]]>https://board.circlewithadot.net/topic/81971748-877e-43e8-b93e-28264aa55820/new-blog-post-tag-driven-deployments-how-mastosum-ships-itself-with-forgejo-actions-and-rootless-podmanRSS for NodeMon, 25 May 2026 06:56:18 GMTSun, 24 May 2026 17:07:24 GMT60<![CDATA[Reply to New blog post: Tag-Driven Deployments: How MastoSum Ships Itself with Forgejo Actions and Rootless Podman on Sun, 24 May 2026 17:33:36 GMT]]>@Larvitz

My deployment workflow for my UI

1 appimagetool packs , & web_client.py locally into a fresh AppImage 📦
2 The script uploads the AppImage to the via scp 🚀
3 The service mastodon-ui is automatically restarted via 🔄

]]>https://board.circlewithadot.net/post/https://burningboard.net/users/tux/statuses/116630750297020820https://board.circlewithadot.net/post/https://burningboard.net/users/tux/statuses/116630750297020820Sun, 24 May 2026 17:33:36 GMT