Benjamin_Boenisch/breakpilot-compliance
1
1
Fork 0
Code Issues 24 Pull Requests Actions Packages Projects Releases Wiki Activity

fix(ci): Python-Jobs nutzen volles python:3.12-Image (git vorinstalliert) statt slim+apt-get
CI / detect-changes (push) Successful in 17s
Details
CI / branch-name (push) Has been skipped
Details
CI / guardrail-integrity (push) Has been skipped
Details
CI / secret-scan (push) Has been skipped
Details
CI / dep-audit (push) Has been skipped
Details
CI / sbom-scan (push) Has been skipped
Details
CI / build-sha-integrity (push) Successful in 14s
Details
CI / validate-canonical-controls (push) Successful in 20s
Details
CI / loc-budget (push) Successful in 24s
Details
CI / go-lint (push) Has been skipped
Details
CI / python-lint (push) Has been skipped
Details
CI / nodejs-lint (push) Has been skipped
Details
CI / nodejs-build (push) Successful in 3m26s
Details
CI / test-go (push) Has been skipped
Details
CI / iace-gt-coverage (push) Has been skipped
Details
CI / test-python-backend (push) Has been skipped
Details
CI / test-python-document-crawler (push) Has been skipped
Details
CI / test-python-dsms-gateway (push) Has been skipped
Details

Browse Source 
apt-get install git scheiterte (exit 100) auf dem Runner — Debian-apt-Mirrors
nicht erreichbar — und brach damit den Checkout ALLER python:3.12-slim-Jobs
(validate-canonical-controls, test-python-backend, iace-gt-coverage, …) seit
#863. Dadurch wurde CI nie grün und Orca hat nie deployt. Das volle python:3.12
bringt git mit -> apt-get-Zeile entfällt. (dep-audits nodejs/golang-apt ist
PR-only und ausserhalb des Deploy-Pfads.)

Co-Authored-By: Claude Opus 4.7 <noreply@anthropic.com>
This commit is contained in:
Benjamin Admin
2026-06-14 22:35:59 +02:00
parent ef4cf1cb62
commit 1d40f80a6f
1 changed files with 7 additions and 14 deletions
Download Patch File Download Diff File Expand all files Collapse all files
.gitea/workflows/ci.yaml
+7 -14
View File
@@ -158,11 +158,10 @@ jobs:
runs-on: docker runs-on: docker
needs: detect-changes needs: detect-changes
if: github.event_name == 'pull_request' && needs.detect-changes.outputs.any_python == 'true' if: github.event_name == 'pull_request' && needs.detect-changes.outputs.any_python == 'true'
container: python:3.12-slim container: python:3.12
steps: steps:
- name: Checkout - name: Checkout
run: | run: |
apt-get update -qq && apt-get install -y -qq git > /dev/null 2>&1
git clone --depth 1 --branch ${GITHUB_REF_NAME} ${GITHUB_SERVER_URL}/${GITHUB_REPOSITORY}.git . git clone --depth 1 --branch ${GITHUB_REF_NAME} ${GITHUB_SERVER_URL}/${GITHUB_REPOSITORY}.git .
- name: Lint (ruff) + type-check (mypy) - name: Lint (ruff) + type-check (mypy)
run: | run: |
@@ -236,11 +235,10 @@ jobs:
dep-audit: dep-audit:
runs-on: docker runs-on: docker
if: github.event_name == 'pull_request' if: github.event_name == 'pull_request'
container: python:3.12-slim container: python:3.12
steps: steps:
- name: Checkout - name: Checkout
run: | run: |
apt-get update -qq && apt-get install -y -qq git curl > /dev/null 2>&1
git clone --depth 1 --branch ${GITHUB_REF_NAME} ${GITHUB_SERVER_URL}/${GITHUB_REPOSITORY}.git . git clone --depth 1 --branch ${GITHUB_REF_NAME} ${GITHUB_SERVER_URL}/${GITHUB_REPOSITORY}.git .
- name: Install Node.js + Go - name: Install Node.js + Go
run: | run: |
@@ -316,7 +314,7 @@ jobs:
iace-gt-coverage: iace-gt-coverage:
runs-on: docker runs-on: docker
container: python:3.12-slim container: python:3.12
needs: detect-changes needs: detect-changes
if: needs.detect-changes.outputs.sdk == 'true' if: needs.detect-changes.outputs.sdk == 'true'
env: env:
@@ -326,7 +324,6 @@ jobs:
steps: steps:
- name: Checkout - name: Checkout
run: | run: |
apt-get update -qq && apt-get install -y -qq git > /dev/null 2>&1
git clone --depth 1 --branch ${GITHUB_REF_NAME} ${GITHUB_SERVER_URL}/${GITHUB_REPOSITORY}.git . git clone --depth 1 --branch ${GITHUB_REF_NAME} ${GITHUB_SERVER_URL}/${GITHUB_REPOSITORY}.git .
- name: GT-Bremse measure-coverage report - name: GT-Bremse measure-coverage report
run: | run: |
@@ -350,7 +347,7 @@ jobs:
test-python-backend: test-python-backend:
runs-on: docker runs-on: docker
container: python:3.12-slim container: python:3.12
needs: detect-changes needs: detect-changes
if: needs.detect-changes.outputs.backend == 'true' if: needs.detect-changes.outputs.backend == 'true'
env: env:
@@ -358,7 +355,6 @@ jobs:
steps: steps:
- name: Checkout - name: Checkout
run: | run: |
apt-get update -qq && apt-get install -y -qq git > /dev/null 2>&1
git clone --depth 1 --branch ${GITHUB_REF_NAME} ${GITHUB_SERVER_URL}/${GITHUB_REPOSITORY}.git . git clone --depth 1 --branch ${GITHUB_REF_NAME} ${GITHUB_SERVER_URL}/${GITHUB_REPOSITORY}.git .
- name: Test backend-compliance - name: Test backend-compliance
run: | run: |
@@ -371,7 +367,7 @@ jobs:
test-python-document-crawler: test-python-document-crawler:
runs-on: docker runs-on: docker
container: python:3.12-slim container: python:3.12
needs: detect-changes needs: detect-changes
if: needs.detect-changes.outputs.crawler == 'true' if: needs.detect-changes.outputs.crawler == 'true'
env: env:
@@ -379,7 +375,6 @@ jobs:
steps: steps:
- name: Checkout - name: Checkout
run: | run: |
apt-get update -qq && apt-get install -y -qq git > /dev/null 2>&1
git clone --depth 1 --branch ${GITHUB_REF_NAME} ${GITHUB_SERVER_URL}/${GITHUB_REPOSITORY}.git . git clone --depth 1 --branch ${GITHUB_REF_NAME} ${GITHUB_SERVER_URL}/${GITHUB_REPOSITORY}.git .
- name: Test document-crawler - name: Test document-crawler
run: | run: |
@@ -392,7 +387,7 @@ jobs:
test-python-dsms-gateway: test-python-dsms-gateway:
runs-on: docker runs-on: docker
container: python:3.12-slim container: python:3.12
needs: detect-changes needs: detect-changes
if: needs.detect-changes.outputs.dsms_gateway == 'true' if: needs.detect-changes.outputs.dsms_gateway == 'true'
env: env:
@@ -400,7 +395,6 @@ jobs:
steps: steps:
- name: Checkout - name: Checkout
run: | run: |
apt-get update -qq && apt-get install -y -qq git > /dev/null 2>&1
git clone --depth 1 --branch ${GITHUB_REF_NAME} ${GITHUB_SERVER_URL}/${GITHUB_REPOSITORY}.git . git clone --depth 1 --branch ${GITHUB_REF_NAME} ${GITHUB_SERVER_URL}/${GITHUB_REPOSITORY}.git .
- name: Test dsms-gateway - name: Test dsms-gateway
run: | run: |
@@ -458,11 +452,10 @@ jobs:
# ── OpenAPI contract validation (always) ───────────────────────────────── # ── OpenAPI contract validation (always) ─────────────────────────────────
validate-canonical-controls: validate-canonical-controls:
runs-on: docker runs-on: docker
container: python:3.12-slim container: python:3.12
steps: steps:
- name: Checkout - name: Checkout
run: | run: |
apt-get update -qq && apt-get install -y -qq git > /dev/null 2>&1
git clone --depth 1 --branch ${GITHUB_REF_NAME} ${GITHUB_SERVER_URL}/${GITHUB_REPOSITORY}.git . git clone --depth 1 --branch ${GITHUB_REF_NAME} ${GITHUB_SERVER_URL}/${GITHUB_REPOSITORY}.git .
- name: Validate controls - name: Validate controls
run: python scripts/validate-controls.py run: python scripts/validate-controls.py