[nomad-step-0] S0.5 — Woodpecker CI validation for nomad/vault artifacts #825

New issue

Closed

opened 2026-04-16 05:34:37 +00:00 by dev-bot · 0 comments

dev-bot commented 2026-04-16 05:34:37 +00:00

Collaborator

Copy link

Part of the Nomad+Vault migration. Step 0 — empty cluster. Blocked by: #824 (S0.4).

Goal

Add static Woodpecker CI validation for every Nomad/Vault artifact so broken HCL can't merge.

Scope

Add .woodpecker/nomad-validate.yml (or extend existing pipeline) with steps:

• nomad config validate nomad/*.hcl — fails on any HCL error.
• vault operator diagnose -config=nomad/vault.hcl -skip storage -skip listener — syntax-only check (real storage/listener only validatable at runtime).
• shellcheck lib/init/nomad/*.sh bin/disinto — all new shell clean.
• bats tests/disinto-init-nomad.bats — a small bats suite covering:
  • disinto init --backend=nomad --dry-run exits 0 and prints expected step list.
  • disinto init --backend=nomad --empty --dry-run same.
  • disinto init --backend=docker unaffected (regression guard).

Trigger: pipeline runs on every PR touching nomad/, lib/init/nomad/, or bin/disinto.

Acceptance criteria

• CI runs on a new PR that intentionally breaks nomad/server.hcl and fails with a clear error.
• Same PR with fix passes.
• Existing PRs not touching these paths are unaffected (pipeline skipped).
• Docs reference in nomad/AGENTS.md (new short file): "what the nomad stack looks like, how to add a jobspec, how CI validates it."

Why

Locks in the no-ad-hoc-steps principle. Every Nomad artifact has static validation before it can land.

Labels / meta

• [nomad-step-0] S0.5 — blocked by #824.

Part of the Nomad+Vault migration. **Step 0 — empty cluster.** **Blocked by: #824 (S0.4).** ## Goal Add static Woodpecker CI validation for every Nomad/Vault artifact so broken HCL can't merge. ## Scope Add `.woodpecker/nomad-validate.yml` (or extend existing pipeline) with steps: - `nomad config validate nomad/*.hcl` — fails on any HCL error. - `vault operator diagnose -config=nomad/vault.hcl -skip storage -skip listener` — syntax-only check (real storage/listener only validatable at runtime). - `shellcheck lib/init/nomad/*.sh bin/disinto` — all new shell clean. - `bats tests/disinto-init-nomad.bats` — a small bats suite covering: - `disinto init --backend=nomad --dry-run` exits 0 and prints expected step list. - `disinto init --backend=nomad --empty --dry-run` same. - `disinto init --backend=docker` unaffected (regression guard). Trigger: pipeline runs on every PR touching `nomad/`, `lib/init/nomad/`, or `bin/disinto`. ## Acceptance criteria - CI runs on a new PR that intentionally breaks `nomad/server.hcl` and fails with a clear error. - Same PR with fix passes. - Existing PRs not touching these paths are unaffected (pipeline skipped). - Docs reference in `nomad/AGENTS.md` (new short file): "what the nomad stack looks like, how to add a jobspec, how CI validates it." ## Why Locks in the no-ad-hoc-steps principle. Every Nomad artifact has static validation before it can land. ## Labels / meta - `[nomad-step-0] S0.5` — blocked by #824.

dev-bot added the

backlog

label 2026-04-16 05:34:37 +00:00

dev-bot self-assigned this 2026-04-16 07:44:46 +00:00

dev-bot added

in-progress

and removed

backlog

labels 2026-04-16 07:44:46 +00:00

dev-bot referenced this issue from a commit 2026-04-16 07:54:14 +00:00

fix: [nomad-step-0] S0.5 — Woodpecker CI validation for nomad/vault artifacts (#825)

dev-bot referenced this issue from a pull request that will close it, 2026-04-16 07:54:29 +00:00

fix: [nomad-step-0] S0.5 — Woodpecker CI validation for nomad/vault artifacts (#825) #833

dev-bot referenced this issue from a commit 2026-04-16 07:59:39 +00:00

fix: tolerate vault operator diagnose exit 2 (advisory warnings) in CI (#825)

dev-bot referenced this issue from a commit 2026-04-16 08:07:01 +00:00

fix: add bats coverage for --backend <value> space-separated form (#825)

dev-bot closed this issue 2026-04-16 08:18:46 +00:00

dev-bot removed their assignment 2026-04-16 08:18:46 +00:00

dev-bot referenced this issue from a commit 2026-04-16 08:18:47 +00:00

Merge pull request 'fix: [nomad-step-0] S0.5 — Woodpecker CI validation for nomad/vault artifacts (#825)' (#833) from fix/issue-825 into main

Sign in to join this conversation.

No Branch/Tag specified

Branches Tags

main

fix/issue-840

chore/gardener-20260415-0806

fix/issue-764

chore/gardener-20260415-0408

fix/issue-742

fix/issue-746

chore/gardener-20260414-2024

fix/issue-712

fix/issue-707

fix/issue-569

fix/issue-558

fix/issue-234

fix/issue-194

pr-137

pr-134

pr-133

pr-126

fix/issue-14

fix/issue-21

chore/gardener-20260327-0004

fix/issue-1

v0.2.0

v0.1.0

Labels

Clear labels   

action

  

backlog

  

blocked

  

bug-report

  

cannot-reproduce

  

in-progress

  

in-triage

  

needs-triage

  

prediction/actioned

  

prediction/dismissed

  

prediction/unreviewed

  

priority

  

rejected

  

reproduced

  

tech-debt

  

underspecified

  

vision

No labels

action

backlog

blocked

bug-report

cannot-reproduce

in-progress

in-triage

needs-triage

prediction/actioned

prediction/dismissed

prediction/unreviewed

priority

rejected

reproduced

tech-debt

underspecified

vision

Milestone

Clear milestone

No items

No milestone

Projects

Clear projects

No items

No project

Assignees

Clear assignees

No assignees

1 participant

Notifications

Subscribe

Due date

The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference: disinto-admin/disinto#825

No description provided.