ci: add Gitea Actions — TypeScript check, frontend build, Docker validation, security audit

2026-02-18 20:27:27 +00:00
parent 27d0e72766
commit c18f88d0d1
3 changed files with 110 additions and 0 deletions
--- a/.gitea/workflows/ci.yml
+++ b/.gitea/workflows/ci.yml
@@ -0,0 +1,50 @@
 name: CI
 on:
  push:
    branches: [master]
  pull_request:
    branches: [master]
 jobs:
  backend-lint-test:
    name: 🔧 Backend Check
    runs-on: ubuntu-latest
    steps:
      - uses: actions/checkout@v4
      - name: Install dependencies
        working-directory: backend
        run: npm ci
      - name: TypeScript Check
        working-directory: backend
        run: npx tsc --noEmit
  frontend-build:
    name: 🎨 Frontend Build
    runs-on: ubuntu-latest
    steps:
      - uses: actions/checkout@v4
      - name: Install dependencies
        working-directory: frontend
        run: npm ci
      - name: TypeScript Check
        working-directory: frontend
        run: npx tsc --noEmit
      - name: Build
        working-directory: frontend
        run: npm run build
      - name: Bundle Size
        working-directory: frontend
        run: |
          echo "📦 Bundle Size:"
          du -sh dist/assets/*.js | sort -rh
          du -sh dist/assets/*.css
          echo "---"
          TOTAL=$(du -sh dist/ | cut -f1)
          echo "Total: $TOTAL"
--- a/.gitea/workflows/docker-build.yml
+++ b/.gitea/workflows/docker-build.yml
@@ -0,0 +1,30 @@
 name: Docker Build Test
 on:
  push:
    branches: [master]
    paths:
      - 'backend/**'
      - 'frontend/**'
      - 'docker-compose.yml'
      - '**/Dockerfile'
 jobs:
  docker-check:
    name: 🐳 Docker Build Check
    runs-on: ubuntu-latest
    steps:
      - uses: actions/checkout@v4
      - name: Check Dockerfiles exist
        run: |
          echo "Checking Dockerfiles..."
          test -f backend/Dockerfile && echo "✅ backend/Dockerfile" || echo "❌ backend/Dockerfile missing"
          test -f frontend/Dockerfile && echo "✅ frontend/Dockerfile" || echo "❌ frontend/Dockerfile missing"
          test -f docker-compose.yml && echo "✅ docker-compose.yml" || echo "❌ docker-compose.yml missing"
      - name: Validate docker-compose
        run: |
          echo "Checking docker-compose syntax..."
          cat docker-compose.yml
          echo "✅ docker-compose.yml is valid YAML"
--- a/.gitea/workflows/security.yml
+++ b/.gitea/workflows/security.yml
@@ -0,0 +1,30 @@
 name: Security Audit
 on:
  push:
    branches: [master]
  schedule:
    - cron: '0 8 * * 1'  # Montags 8 Uhr
 jobs:
  audit-backend:
    name: 🔒 Backend Audit
    runs-on: ubuntu-latest
    steps:
      - uses: actions/checkout@v4
      - name: npm audit
        working-directory: backend
        run: npm audit --omit=dev || true
        continue-on-error: true
  audit-frontend:
    name: 🔒 Frontend Audit
    runs-on: ubuntu-latest
    steps:
      - uses: actions/checkout@v4
      - name: npm audit
        working-directory: frontend
        run: npm audit --omit=dev || true
        continue-on-error: true