docs: add contributing section to README#9
Merged
Conversation
jeanmachuca
added a commit
that referenced
this pull request
Jun 24, 2026
jeanmachuca
added a commit
that referenced
this pull request
Jul 4, 2026
* feat: .cgp package registry server - 6 REST endpoints: search, get, download, publish, unlock, health - In-memory package store with search (name+description+tags) - Token-based auth for publish/unlock endpoints - .cgp file serving from data directory - 27 tests across server, store, and auth packages - CI: build, lint, test, vet * chore: attribute project to Jean Machuca with GitHub Sponsors * chore: add * 2.* pattern to .gitignore for editor backups * docs: expand README with build, API, and usage details (#4) * docs: add cross-repo navigation links to README (#7) * docs: add contributing section to README (#9) * Fix CI blockers: commit go.sum, fix errcheck, fix build paths, wire up CI * feat: add source URL validation (source_repository, source_issues) on publish * fix: CI integrity and .gitignore repairs across repos (#17) * feat: refactor to proxy/notary — 302 redirect + checksum ledger BREAKING: registry-server no longer stores .cgp files on disk. - handleDownload() now returns 302 redirect to package's download_url - handlePublish() computes SHA-256 from multipart upload (discards file) - handlePublish() accepts sha256 + download_url via JSON (no fetch) - Package struct gains DownloadURL field - Removed cgpPath(), downloadFile(), DataDir filesystem usage - Notary audit trail logged on each publish - Updated all tests for proxy/redirect mode
jeanmachuca
added a commit
that referenced
this pull request
Jul 4, 2026
* feat: .cgp package registry server - 6 REST endpoints: search, get, download, publish, unlock, health - In-memory package store with search (name+description+tags) - Token-based auth for publish/unlock endpoints - .cgp file serving from data directory - 27 tests across server, store, and auth packages - CI: build, lint, test, vet * chore: attribute project to Jean Machuca with GitHub Sponsors * chore: add * 2.* pattern to .gitignore for editor backups * docs: expand README with build, API, and usage details (#4) * docs: add cross-repo navigation links to README (#7) * docs: add contributing section to README (#9) * Fix CI blockers: commit go.sum, fix errcheck, fix build paths, wire up CI * feat: add source URL validation (source_repository, source_issues) on publish
jeanmachuca
added a commit
that referenced
this pull request
Jul 4, 2026
* feat: .cgp package registry server - 6 REST endpoints: search, get, download, publish, unlock, health - In-memory package store with search (name+description+tags) - Token-based auth for publish/unlock endpoints - .cgp file serving from data directory - 27 tests across server, store, and auth packages - CI: build, lint, test, vet * chore: attribute project to Jean Machuca with GitHub Sponsors * chore: add * 2.* pattern to .gitignore for editor backups * docs: expand README with build, API, and usage details (#4) * docs: add cross-repo navigation links to README (#7) * docs: add contributing section to README (#9) * Fix CI blockers: commit go.sum, fix errcheck, fix build paths, wire up CI * feat: add source URL validation (source_repository, source_issues) on publish * fix: CI integrity and .gitignore repairs across repos
jeanmachuca
added a commit
that referenced
this pull request
Jul 5, 2026
* feat: .cgp package registry server - 6 REST endpoints: search, get, download, publish, unlock, health - In-memory package store with search (name+description+tags) - Token-based auth for publish/unlock endpoints - .cgp file serving from data directory - 27 tests across server, store, and auth packages - CI: build, lint, test, vet * chore: attribute project to Jean Machuca with GitHub Sponsors * chore: add * 2.* pattern to .gitignore for editor backups * docs: expand README with build, API, and usage details (#4) * docs: add cross-repo navigation links to README (#7) * docs: add contributing section to README (#9) * Fix CI blockers: commit go.sum, fix errcheck, fix build paths, wire up CI * feat: add source URL validation (source_repository, source_issues) on publish * fix: CI integrity and .gitignore repairs across repos (#17) * feat: refactor to proxy/notary — 302 redirect + checksum ledger BREAKING: registry-server no longer stores .cgp files on disk. - handleDownload() now returns 302 redirect to package's download_url - handlePublish() computes SHA-256 from multipart upload (discards file) - handlePublish() accepts sha256 + download_url via JSON (no fetch) - Package struct gains DownloadURL field - Removed cgpPath(), downloadFile(), DataDir filesystem usage - Notary audit trail logged on each publish - Updated all tests for proxy/redirect mode
jeanmachuca
added a commit
that referenced
this pull request
Jul 5, 2026
* fix: resolve all golangci-lint errcheck issues (#28) * feat:proxy notary (#22) * feat: .cgp package registry server - 6 REST endpoints: search, get, download, publish, unlock, health - In-memory package store with search (name+description+tags) - Token-based auth for publish/unlock endpoints - .cgp file serving from data directory - 27 tests across server, store, and auth packages - CI: build, lint, test, vet * chore: attribute project to Jean Machuca with GitHub Sponsors * chore: add * 2.* pattern to .gitignore for editor backups * docs: expand README with build, API, and usage details (#4) * docs: add cross-repo navigation links to README (#7) * docs: add contributing section to README (#9) * Fix CI blockers: commit go.sum, fix errcheck, fix build paths, wire up CI * feat: add source URL validation (source_repository, source_issues) on publish * fix: CI integrity and .gitignore repairs across repos (#17) * feat: refactor to proxy/notary — 302 redirect + checksum ledger BREAKING: registry-server no longer stores .cgp files on disk. - handleDownload() now returns 302 redirect to package's download_url - handlePublish() computes SHA-256 from multipart upload (discards file) - handlePublish() accepts sha256 + download_url via JSON (no fetch) - Package struct gains DownloadURL field - Removed cgpPath(), downloadFile(), DataDir filesystem usage - Notary audit trail logged on each publish - Updated all tests for proxy/redirect mode * fix:ci blockers (#25) * feat: .cgp package registry server - 6 REST endpoints: search, get, download, publish, unlock, health - In-memory package store with search (name+description+tags) - Token-based auth for publish/unlock endpoints - .cgp file serving from data directory - 27 tests across server, store, and auth packages - CI: build, lint, test, vet * chore: attribute project to Jean Machuca with GitHub Sponsors * chore: add * 2.* pattern to .gitignore for editor backups * docs: expand README with build, API, and usage details (#4) * docs: add cross-repo navigation links to README (#7) * docs: add contributing section to README (#9) * Fix CI blockers: commit go.sum, fix errcheck, fix build paths, wire up CI * feat: add source URL validation (source_repository, source_issues) on publish * fix:ci integrity (#26) * feat: .cgp package registry server - 6 REST endpoints: search, get, download, publish, unlock, health - In-memory package store with search (name+description+tags) - Token-based auth for publish/unlock endpoints - .cgp file serving from data directory - 27 tests across server, store, and auth packages - CI: build, lint, test, vet * chore: attribute project to Jean Machuca with GitHub Sponsors * chore: add * 2.* pattern to .gitignore for editor backups * docs: expand README with build, API, and usage details (#4) * docs: add cross-repo navigation links to README (#7) * docs: add contributing section to README (#9) * Fix CI blockers: commit go.sum, fix errcheck, fix build paths, wire up CI * feat: add source URL validation (source_repository, source_issues) on publish * fix: CI integrity and .gitignore repairs across repos * fix: add CI workflow and gitignore trailing-space pattern (#27) * feat: .cgp package registry server (#24) - 6 REST endpoints: search, get, download, publish, unlock, health - In-memory package store with search (name+description+tags) - Token-based auth for publish/unlock endpoints - .cgp file serving from data directory - 27 tests across server, store, and auth packages - CI: build, lint, test, vet * feat: add source_repository and source_issues fields to package publish (#30) * feat: SQLite-ready file store, PUT endpoint, A1-A10 validation, scoped auth (#31)
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
.