The auto GITHUB_TOKEN can't push packages (unauthorized: reqPackageAccess).
Log in with a Forgejo token that has write:package, stored as the
REGISTRY_TOKEN Actions secret.
Co-Authored-By: Claude Opus 4.8 <noreply@anthropic.com>
Runner executes jobs in containers with no docker; mount the host
(OrbStack) socket into a docker:cli job container so builds reach the
host daemon. Use sh shell (alpine) and install git for checkout.
Co-Authored-By: Claude Opus 4.8 <noreply@anthropic.com>
The mac-mini runner runs jobs in host mode with no Node, so JS actions
like actions/checkout fail with 'Cannot find: node in PATH'. Replace it
with a plain git init/fetch/checkout so the workflow needs only git +
docker, both present on the host.
Co-Authored-By: Claude Opus 4.8 <noreply@anthropic.com>
- Add .forgejo/workflows/docker-build.yml: builds API (production) and
nginx (nginx-frontend) images with plain docker build/push and pushes
to git.plexultra.com (native arm64 on the mac-mini runner)
- Remove .github/workflows/docker-build.yml (GHCR/GitHub-specific)
- Point docker-compose.deploy.yml images at git.plexultra.com registry
Co-Authored-By: Claude Opus 4.8 <noreply@anthropic.com>
