Overview

BarStrad-Bot uses GitHub Actions for automated Continuous Integration and Continuous Deployment (CI/CD). This system ensures code quality, automates testing, and handles production deployments seamlessly.

Pipeline Architecture

The CI/CD pipeline consists of three main workflows:

🔄 CI Workflow (`ci.yml`)

Purpose: Validates code changes and ensures quality
Triggers: Pull requests, feature branch pushes, manual execution
Duration: ~2-3 minutes
Output: Validation results (no artifacts)

🚀 Release Workflow (`release.yml`)

Purpose: Builds and deploys production releases
Triggers: Main branch pushes, manual execution
Duration: ~5-10 minutes
Output: Docker images, GitHub releases, notifications

📚 Documentation Workflow (`docs.yml`)

Purpose: Builds and deploys documentation to GitHub Pages
Triggers: Manual execution, external API calls
Duration: ~3-5 minutes
Output: Static documentation site on GitHub Pages

Workflow Separation Strategy

The pipeline uses a separation of concerns approach:

Benefits of This Approach

Fast Feedback: Developers get quick validation on feature branches
Resource Efficiency: No unnecessary artifact creation during development
Clear Responsibilities: CI validates, Release deploys
Risk Reduction: Separate validation from deployment concerns

Build Environment

Both workflows use a custom build agent container:

Build Agent Container

Image: ghcr.io/the-running-dev/build-agent:latest
Capabilities: Node.js, Docker-in-Docker, GitVersion, custom build scripts
Benefits: Consistent build environment, pre-installed tools, isolated execution

Container Features

Node.js Runtime: Latest LTS version with npm/yarn
Docker Support: Docker-in-Docker for container builds
GitVersion: Automatic semantic versioning
Build Scripts: Custom node-in-docker-build command
Security: Isolated execution environment

Versioning Strategy

The project uses GitVersion for automatic semantic versioning:

Version Calculation Rules

Major: Breaking changes (manual bump required)
Minor: New features on main branch
Patch: Bug fixes and hotfixes
Pre-release: Feature branch builds

GitVersion Configuration

mode: ContinuousDeployment
next-version: v1.0.0-alpha

branches:
  main:
    increment: Minor
  feature:
    increment: Inherit
  hotfix:
    increment: Patch

Security & Permissions

Required Secrets

All workflows require these GitHub Secrets:

Secret	Purpose	Workflows
`REGISTRY_TOKEN`	GitHub Container Registry access	CI, Release
`NOTIFICATIONS_WEBHOOK_URL`	Build status notifications	CI, Release
`DISCORD_BOT_TOKEN`	Discord bot configuration	CI, Release
`DISCORD_WEBHOOK_URL`	Discord notifications	CI, Release

Permission Model

CI Workflow: packages: write (minimal permissions)
Release Workflow: packages: write, contents: write (deployment permissions)

Monitoring & Observability

Build Status Monitoring

GitHub Actions: Real-time workflow status
Status Badges: README.md status indicators
Webhook Notifications: External system integration

Metrics Tracked

Build success/failure rates
Build duration trends
Deployment frequency
Error patterns and resolution

Path-based Optimization

Both workflows use path exclusions to avoid unnecessary runs:

Excluded Paths

documentation/** - Documentation changes don't require builds
.github/** - Workflow changes don't require validation

Benefits

Resource Savings: Fewer unnecessary builds
Faster Feedback: Focus on code changes that matter
Cost Optimization: Reduced CI/CD usage costs

Integration Points

Discord Integration

Bot Runtime: Environment variables for Discord connection
Notifications: Webhook integration for build/deployment status
Error Reporting: Automated error notifications

Container Registry

Storage: GitHub Container Registry (ghcr.io)
Tagging: Semantic version tags + latest
Access: Private registry with token authentication

GitHub Integration

Releases: Automated release creation with notes
Pull Requests: Status checks and validation
Issues: Automatic linking and references

Deployment Flow

Development Flow

Developer creates feature branch
CI workflow validates changes on push
Developer opens pull request
CI workflow validates PR changes
Code review process
Merge to main branch
Release workflow builds and deploys
Notifications sent to team

Emergency Release Flow

Manual trigger of Release workflow
Build from current main branch
Deploy to production
Notifications sent
Post-deployment verification

Best Practices Implemented

Development Best Practices

Automated Validation: Every change is automatically tested
Branch Protection: Main branch requires PR validation
Code Quality: Consistent build environment ensures quality
Fast Feedback: Quick validation for rapid development

Deployment Best Practices

Automated Deployment: No manual deployment steps
Rollback Capability: Docker tags enable easy rollbacks
Health Checks: Automated deployment verification
Notifications: Team awareness of deployments

Security Best Practices

Secret Management: Secure storage of sensitive data
Minimal Permissions: Least privilege access model
Container Security: Isolated build environments
Token Rotation: Regular credential updates

Required GitHub Secrets

The CI/CD workflows require the following secrets to be configured in GitHub:

Secret	Purpose	Workflows
`REGISTRY_TOKEN`	GitHub token with package write permissions	Release
`NOTIFICATIONS_WEBHOOK_URL`	Webhook URL for build notifications	CI, Release
`DISCORD_BOT_TOKEN`	Discord bot authentication token	CI, Release
`DISCORD_WEBHOOK_URL`	Discord webhook URL for order notifications	CI, Release

Secret Configuration

Navigate to Repository Settings → Secrets and variables → Actions
Add each required secret with the appropriate values
Verify permissions ensure tokens have necessary access
Test workflows to confirm secrets are working correctly

Troubleshooting CI/CD Issues

Common Build Failures

TypeScript Errors: Check source code compilation
Docker Build Issues: Review Dockerfile and dependencies
Permission Errors: Verify GitHub token permissions
Container Access: Check build agent availability

Debugging Strategies

Workflow Logs: Review detailed GitHub Actions logs
Local Testing: Reproduce builds locally with Docker
Manual Triggers: Test workflows manually for debugging
Environment Validation: Verify all required secrets
Local Workflow Testing: Use Act to test workflows locally - see Local Testing with Act

Next Steps

CI Workflow Details - Detailed CI workflow validation process
Release Workflow Details - Comprehensive release process, versioning, and troubleshooting
Documentation Workflow - Automated documentation deployment to GitHub Pages
Workflow Comparison - Side-by-side comparison of CI vs Release workflows
Local Testing with Act - Test GitHub Actions workflows locally
Deployment Guide - Production deployment procedures
Troubleshooting - Common issues and solutions

Ready to dive deeper? Check out the detailed CI Workflow, Release Workflow, or Documentation Workflow documentation.

Pipeline Architecture​

🔄 CI Workflow (ci.yml)​

🚀 Release Workflow (release.yml)​

📚 Documentation Workflow (docs.yml)​

Workflow Separation Strategy​

Benefits of This Approach​

Build Environment​

Build Agent Container​

Container Features​

Versioning Strategy​

Version Calculation Rules​

GitVersion Configuration​

Security & Permissions​

Required Secrets​

Permission Model​

Monitoring & Observability​

Build Status Monitoring​

Metrics Tracked​

Path-based Optimization​

Excluded Paths​

Benefits​

Integration Points​

Discord Integration​

Container Registry​

GitHub Integration​

Deployment Flow​

Development Flow​

Emergency Release Flow​

Best Practices Implemented​

Development Best Practices​

Deployment Best Practices​

Security Best Practices​

Required GitHub Secrets​

Secret Configuration​

Troubleshooting CI/CD Issues​

Common Build Failures​

Debugging Strategies​

Next Steps​