How to Build a Simple CI/CD Pipeline Using GitHub Actions on a VPS

·1 views

A software developer has detailed how to set up a lightweight CI/CD pipeline using GitHub Actions to automate deployments of a Next.js app to a personal VPS. The pipeline consists of four sequential jobs — lint, security scan, Docker image build, and deployment — where each step must pass before the next begins. Security scanning is handled by Trivy, which checks for critical and high CVEs on every push and blocks the build if a fix is available, using the ignore-unfixed flag to avoid halting deployments over unresolvable vulnerabilities. Once the image passes all checks, it is pushed to GitHub's container registry and deployed to the VPS via SSH using Docker Compose. The author argues this approach delivers the same deployment convenience as managed platforms like Vercel while giving developers full visibility and control over what happens between a git push and a live container.

Read the full story at DEV Community

This is an AI-generated summary. ShortSingh links to the original source for the complete article.

Discussion (0)

Austria Seeks EU Backing to Host Anthropic Amid US Access Restrictions

Austria is lobbying the European Union to support hosting AI company Anthropic within its borders. The push comes in response to US access curbs that have complicated European use of American AI services. Austria appears to be positioning itself as a European hub for the Claude-maker's operations. The move reflects broader EU efforts to secure independent access to advanced AI infrastructure amid transatlantic tensions.

0 comments Read more at Hacker News

ProgrammingDEV Community ·

Developer Ditches VS Code for Custom 30MB Native IDE to Cut IPC Latency

A developer building V.E.L.O.C.I.T.Y.-OS, a bare-metal operating system project, has abandoned the VS Code extension model due to its high memory overhead, which can exceed 300MB at idle. The decision came after JSON-RPC serialization in the agent processing path was identified as a performance bottleneck consuming unnecessary CPU cycles. As a replacement, the developer built a standalone native IDE weighing just 30MB, paired with zero-allocation binary parsing using C# and Rust. Benchmarks show the new binary format reduced read latency from 846 nanoseconds with JSON to 61 nanoseconds, a roughly 92.7% improvement. This is the third installment in a 12-part series documenting the project's progression toward a fully self-contained, CPU cache-resident operating system.

0 comments Read more at DEV Community

ProgrammingDEV Community ·

Codename One Adds watchOS and Wear OS Support via Single Java/Kotlin Codebase

Codename One, an open-source framework for building cross-platform apps from a single Java or Kotlin codebase, has released wearable support for both Apple watchOS and Google Wear OS. The watchOS port uses a dedicated Core Graphics rendering backend hosted inside a SwiftUI shell, since watchOS lacks UIKit, OpenGL ES, and Metal. Developers can share the same codebase across phone and watch apps, controlling per screen how much of the UI is displayed on the smaller device. A dedicated entry point, codename1.watchMain, allows the watch build to start from a lightweight class, enabling dead-code elimination to reduce the memory and CPU footprint. On Apple devices, the watch app is embedded within the iOS app by default so both install together, while a standalone watch-only build is also available.

0 comments Read more at DEV Community

ProgrammingDEV Community ·

Guide: Automate Airtable Record Operations Using n8n Workflow Node

The n8n Airtable node allows users to read, create, update, and delete Airtable records without writing any custom scripts. Setup requires an Airtable personal access token with appropriate scopes, as the older API key was deprecated in February 2024. The node supports multiple operations including List, Search, Get, Create, Update, and Upsert, each configurable with field mappings and filter formulas. Key pitfalls include case-sensitive field names and missing token scopes that can silently fail or return 403 errors. A free importable workflow JSON is provided to help users get started quickly.

0 comments Read more at DEV Community