Change key from 'gitea' to 'platform/gitea' to match the
new categorized Vault secret structure.
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
The zot-registry-credentials ExternalSecret was defined twice in argocd
namespace, causing ArgoCD duplicate resource warning. The image-updater-secret.yaml
already has the correct definition with the new Vault path (storage/zot).
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
- Set prune: false to prevent ArgoCD from deleting PipelineRuns
- PipelineRuns/TaskRuns are dynamically created by triggers
- IgnoreExtraneous only affects diff, not prune action
- Update buildah task to create OCI manifest list format
- Push images with both :latest and specific tags
- Update all pipelines to use new IMAGE/TAG parameters
- Enable ArgoCD Image Updater digest detection
- Rename EventListener from github-listener to gitea-listener
- Rename TriggerBinding from github-push-binding to gitea-push-binding
- Update webhook secret to gitea-webhook-secret
- Rename credentials from github to gitea
- Update Ingress service name to el-gitea-listener
- Update Vault secret paths from github to gitea
- Add EventListener for GitHub push events
- Add TriggerBinding for payload parsing
- Add TriggerTemplates for Next.js and FastAPI
- Add RBAC for trigger service account
- Add ExternalSecret for webhook secret from Vault
- Add Ingress at tekton0213.kro.kr/hooks
- ArgoCD Image Updater for Zot registry polling
- Tekton Tasks: git-clone, buildah-build-push
- Pipelines: nextjs, fastapi, python
- ExternalSecrets for Zot and GitHub credentials
- Tekton Pipeline for container builds
- Tekton Triggers for webhook events
- Tekton Dashboard at tekton0213.kro.kr
- Namespace patched to privileged for buildah
