checkmate5 0.1.0.dev1__tar.gz

checkmate5-0.1.0.dev1/.dockerignore

@@ -0,0 +1,20 @@
+.git
+.gitignore
+__pycache__
+*.pyc
+*.pyo
+*.pyd
+.Python
+.venv
+env/
+venv/
+build/
+dist/
+.mypy_cache/
+.pytest_cache/
+.pip-cache/
+.coverage
+*.egg-info/
+*.egg
+.DS_Store
+

checkmate5-0.1.0.dev1/.gitignore

@@ -0,0 +1,123 @@
+# Editors
+.vscode/
+.idea/
+
+# Vagrant
+.vagrant/
+
+# Mac/OSX
+.DS_Store
+
+# Windows
+Thumbs.db
+
+# Source for the following rules: https://raw.githubusercontent.com/github/gitignore/master/Python.gitignore
+# Byte-compiled / optimized / DLL files
+__pycache__/
+*.py[cod]
+*$py.class
+
+# C extensions
+*.so
+
+# Distribution / packaging
+.Python
+build/
+develop-eggs/
+dist/
+downloads/
+eggs/
+.eggs/
+parts/
+sdist/
+var/
+wheels/
+*.egg-info/
+.installed.cfg
+*.egg
+MANIFEST
+
+# PyInstaller
+#  Usually these files are written by a python script from a template
+#  before PyInstaller builds the exe, so as to inject date/other infos into it.
+*.manifest
+*.spec
+
+# Installer logs
+pip-log.txt
+pip-delete-this-directory.txt
+
+# Unit test / coverage reports
+htmlcov/
+.tox/
+.nox/
+.coverage
+.coverage.*
+.cache
+nosetests.xml
+coverage.xml
+*.cover
+.hypothesis/
+.pytest_cache/
+
+# Translations
+*.mo
+*.pot
+
+# Django stuff:
+*.log
+local_settings.py
+db.sqlite3
+
+# Flask stuff:
+instance/
+.webassets-cache
+
+# Scrapy stuff:
+.scrapy
+
+# Sphinx documentation
+docs/_build/
+
+# PyBuilder
+target/
+
+# Jupyter Notebook
+.ipynb_checkpoints
+
+# IPython
+profile_default/
+ipython_config.py
+
+# pyenv
+.python-version
+
+# celery beat schedule file
+celerybeat-schedule
+
+# SageMath parsed files
+*.sage.py
+
+# Environments
+.env
+.venv
+env/
+venv/
+ENV/
+env.bak/
+venv.bak/
+
+# Spyder project settings
+.spyderproject
+.spyproject
+
+# Rope project settings
+.ropeproject
+
+# mkdocs documentation
+/site
+
+# mypy
+.mypy_cache/
+.dmypy.json
+dmypy.json

checkmate5-0.1.0.dev1/.gitlab-ci.yml

@@ -0,0 +1,96 @@
+image: python:3.14
+
+stages:
+  - build
+  - publish
+  - docker
+  - cleanup
+
+variables:
+  PIP_CACHE_DIR: "$CI_PROJECT_DIR/.pip-cache"
+  DOCKERHUB_REPO: "tcosolutions/betterscan-worker-cli"
+
+cache:
+  paths:
+    - .pip-cache/
+
+
+# 1. BUILD STAGE
+build_package:
+  stage: build
+  before_script:
+    - git fetch --tags
+  script:
+    - python -m build
+    - python -m twine upload --verbose dist/*
+  rules:
+    - if: $CI_COMMIT_TAG
+    - if: $CI_COMMIT_BRANCH == "main"
+  script:
+    - pip install --upgrade pip
+    - pip install build
+    - python -m build
+  artifacts:
+    paths:
+      - dist/
+    expire_in: 1 week
+
+# 2. PUBLISH STAGE (PyPI)
+publish_to_pypi:
+  stage: publish
+  rules:
+    - if: $CI_COMMIT_TAG
+      when: always
+    - if: $CI_COMMIT_BRANCH == "main"
+      when: manual
+      allow_failure: true
+  before_script:
+    - pip install twine
+  script:
+    - export TWINE_USERNAME="__token__"
+    - export TWINE_PASSWORD="$PYPI_TOKEN"
+    - python -m twine upload --verbose dist/*
+
+# 3. DOCKER STAGE (Secure DinD)
+docker_publish:
+  stage: docker
+  image: docker:27
+  services:
+    - docker:27-dind
+  variables:
+    DOCKER_TLS_CERTDIR: "/certs"
+  rules:
+    - if: $CI_COMMIT_TAG
+      when: always
+    - if: $CI_COMMIT_BRANCH == "main"
+      when: manual
+      allow_failure: true
+  script:
+    - echo "$DOCKERHUB_TOKEN" | docker login -u "$DOCKERHUB_USERNAME" --password-stdin
+    - |
+      TAG_NAME=${CI_COMMIT_TAG:-latest}
+      docker build -t "$DOCKERHUB_REPO:$TAG_NAME" .
+      docker push "$DOCKERHUB_REPO:$TAG_NAME"
+
+# 4. CLEANUP STAGE (Scheduled)
+docker_hub_cleanup:
+  stage: cleanup
+  image: alpine:latest
+  rules:
+    - if: $CI_PIPELINE_SOURCE == "schedule"
+  before_script:
+    - apk add --no-cache curl jq
+  script:
+    - |
+      TOKEN=$(curl -s -H "Content-Type: application/json" -X POST \
+        -d "{\"username\": \"$DOCKERHUB_USERNAME\", \"password\": \"$DOCKERHUB_TOKEN\"}" \
+        https://hub.docker.com/v2/users/login/ | jq -r .token)
+      THRESHOLD_DATE=$(date -d "@$(($(date +%s) - 2592000))" +%Y-%m-%dT%H:%M:%S)
+      TAGS_JSON=$(curl -s -H "Authorization: JWT $TOKEN" "https://hub.docker.com/v2/repositories/$DOCKERHUB_REPO/tags/?page_size=100")
+      OLD_TAGS=$(echo $TAGS_JSON | jq -r --arg THRESHOLD "$THRESHOLD_DATE" '
+        .results[] | select(.name != "latest") | select(.name | startswith("v") | not) | 
+        select(.last_updated < $THRESHOLD) | .name')
+      for TAG in $OLD_TAGS; do
+        echo "Deleting expired tag: $TAG"
+        curl -s -X DELETE -H "Authorization: JWT $TOKEN" "https://hub.docker.com/v2/repositories/$DOCKERHUB_REPO/tags/$TAG/"
+      done

checkmate5-0.1.0.dev1/.woodpecker.yml

@@ -0,0 +1,69 @@
+# .woodpecker.yml
+labels:
+  platform: linux/amd64
+
+steps:
+  # 1. BUILD STAGE
+  build_package:
+    image: python:3.13 # Recommended: 3.13 is stable; use 3.14 if you need experimental
+    commands:
+      - pip install --upgrade pip
+      - pip install build
+      - python -m build
+    when:
+      - event: tag
+      - event: push
+        branch: main
+
+  # 2. PUBLISH STAGE (PyPI)
+  publish_to_pypi:
+    image: python:3.13
+    environment:
+      PYPI_TOKEN:
+        from_secret: pypi_token
+    commands:
+      - pip install twine
+      - export TWINE_USERNAME="__token__"
+      - export TWINE_PASSWORD=$PYPI_TOKEN
+      - python -m twine upload --verbose dist/*
+    when:
+      - event: tag
+      - event: push
+        branch: main
+
+  # 3. DOCKER STAGE (Using Kaniko)
+  # This avoids the "privileged" error and is standard for Codeberg
+  docker_publish:
+    image: woodpecker-plugins/kaniko
+    settings:
+      repo: tcosolutions/betterscan-worker-cli
+      username:
+        from_secret: dockerhub_username
+      password:
+        from_secret: dockerhub_token
+      # Automatically handles tagging: 
+      # Pushes to main -> 'latest'
+      # Git tag -> 'v1.0.0'
+      tags: ${CI_COMMIT_TAG:-latest}
+    when:
+      - event: tag
+      - event: push
+        branch: main
+
+  # 4. CLEANUP STAGE
+  docker_hub_cleanup:
+    image: alpine:latest
+    environment:
+      DOCKERHUB_USERNAME:
+        from_secret: dockerhub_username
+      DOCKERHUB_TOKEN:
+        from_secret: dockerhub_token
+    commands:
+      - apk add --no-cache curl jq
+      - |
+        TOKEN=$(curl -s -H "Content-Type: application/json" -X POST \
+          -d "{\"username\": \"$DOCKERHUB_USERNAME\", \"password\": \"$DOCKERHUB_TOKEN\"}" \
+          https://hub.docker.com/v2/users/login/ | jq -r .token)
+        
+        # This checks if the login works; you can expand the script as needed
+        if

checkmate5-0.1.0.dev1/Dockerfile

@@ -0,0 +1,23 @@
+FROM python:3.14
+
+ENV PIP_NO_CACHE_DIR=1
+
+
+
+RUN apt-get update \
+    && apt-get install -y --no-install-recommends build-essential git \
+    && rm -rf /var/lib/apt/lists/*
+
+WORKDIR /app
+
+COPY pyproject.toml README.md ./
+COPY checkmate ./checkmate
+COPY bin ./bin
+
+RUN pip install --upgrade pip && pip install . && pip install checkmate5
+
+ENV CODE_DIR=/workspace
+
+ENTRYPOINT ["checkmate"]
+CMD ["--help"]
+