{"id":16335110,"url":"https://github.com/tao3k/tenzir-devops","last_synced_at":"2025-05-16T09:34:57.307Z","repository":{"id":182744884,"uuid":"669021756","full_name":"tao3k/tenzir-devops","owner":"tao3k","description":null,"archived":false,"fork":false,"pushed_at":"2023-11-07T07:18:28.000Z","size":252,"stargazers_count":3,"open_issues_count":0,"forks_count":0,"subscribers_count":2,"default_branch":"main","last_synced_at":"2025-05-10T06:41:11.492Z","etag":null,"topics":["automation","ci","devops","devsecops","gitops","nix","tenzir"],"latest_commit_sha":null,"homepage":"","language":"Nix","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":null,"status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/tao3k.png","metadata":{"files":{"readme":"README.org","changelog":null,"contributing":null,"funding":null,"license":null,"code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null}},"created_at":"2023-07-21T06:50:25.000Z","updated_at":"2024-05-02T04:57:15.000Z","dependencies_parsed_at":null,"dependency_job_id":"ff8aa62b-d00f-45b8-93b3-c9b37a654899","html_url":"https://github.com/tao3k/tenzir-devops","commit_stats":null,"previous_names":["gtrunsec/tenzir-users-devops-templates","tao3k/tenzir-devops","gtrunsec/tenzir-users-devops-template"],"tags_count":0,"template":true,"template_full_name":null,"repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/tao3k%2Ftenzir-devops","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/tao3k%2Ftenzir-devops/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/tao3k%2Ftenzir-devops/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/tao3k%2Ftenzir-devops/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/tao3k","download_url":"https://codeload.github.com/tao3k/tenzir-devops/tar.gz/refs/heads/main","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":254504769,"owners_count":22082084,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["automation","ci","devops","devsecops","gitops","nix","tenzir"],"created_at":"2024-10-10T23:40:05.477Z","updated_at":"2025-05-16T09:34:57.270Z","avatar_url":"https://github.com/tao3k.png","language":"Nix","funding_links":[],"categories":[],"sub_categories":[],"readme":"#+TITLE: README\n#+AUTHOR: GuangTao Zhang\n#+EMAIL: gtrunsec@hardenedlinux.org\n#+DATE: 2023-07-21 Fri 06:43\n\n\n\n* Branches status\n\n- main: used to test the full features\n- template: init the template with minimal env\n\n* Configuration languages or files\n\nBy simply placing the supported configuration formats or files in the corresponding folders, the auto-importing mechanism will be triggered.\n#+begin_quote\n We have a global command-line tool called ~std~ that allows users to query and execute various tasks.\n#+end_quote\n\n+ units (dirs)\n  1) cells(std\u0026nix) A DevOps framework for the SDLC with the power of Nix and Flakes. Good for keeping deadlines!\n    - [X] ~devshell~ -\u003e path -\u003e ./cells/devshell\n      - nix,yaml\n    - [X] ~tasks~ -\u003e path -\u003e ./cells/tasks/tasks\n      - nix,json,yaml\n    - [X] ~schemas~ -\u003e path -\u003e ./tenzir/schemas/\n      - nix,yaml,json\n    - [ ] ~terraform~ -\u003e path -\u003e ./deploy/tf\n      - nix(validator::terranix),hcl(validator::internal),json(overrideValues),nickel(validator::tf-ncl)\n    - [ ] ~kubernets~ -\u003e path -\u003e ./deploy/k8s\n      - ts(validator::architect-k8s-template),yaml,nickel,nix,json(overrideValues)\n    - [] ~secrets~ -\u003e path -\u003e ./secrets\n      - envs(yaml/json), sops(GPG,ssh),age(ssh),vault(cloud),git-crypt\n\n  2) nickel: Introducing the experimental incorporation of Nickel into security dataflow.\n\n\nMoreover, users have the flexibility to modify the structure of the related cells' paths by using the ~cellsFrom~ field in the ~./devshell.toml~.\n\n* Getting started\n\n- with docker/podman\n#+begin_src bash\ndocker pull ghcr.io/gtrunsec/tenzir-devshell-users:latest\ngit clone https://github.com/GTrunSec/tenzir-users-devops-template\ncd tenzir-users-devops-template\ndocker run --platform linux/amd64 -it -v \"$(pwd):/work\" --entrypoint bash ghcr.io/gtrunsec/tenzir-devshell-users:latest\npodman run --platform linux/amd64 -it -v \"$(pwd):/work\" --userns=keep-id --entrypoint bash ghcr.io/gtrunsec/tenzir-devshell-users:latest\n#+end_src\n\n- with nix-direnv\n\n#+begin_src bash\ndirenv allow\n#+end_src\n\n* Concepts\n** auto-importing/merging\n\n- user dir: ~./tenzir/schemas/sysmon.yaml~\n- source: https://github.com/tenzir/tenzir/blob/main/schema/concepts/sysmon.yaml\n- output -\u003e dir -\u003e RP_ROOT + \"~/data/tenzir~\n\nThe final output files are automatically generated and stored in the that folder.\n\nIf the ~sysmon.yaml~ file exists within the user directory, then automatic merging the data with source and generating the final file into the ~generated-sysmon.yaml~.\n\nmake sure, you have set the ~source~, ~data~ and ~output~ fields correctly.\n\n#+begin_src yaml\n# upstream's schema data\nsource: \"/schema/concepts/sysmon.yaml\"\n# your own data\ndata:\n- concept:\n  ...\n#+end_src\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Ftao3k%2Ftenzir-devops","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Ftao3k%2Ftenzir-devops","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Ftao3k%2Ftenzir-devops/lists"}