dev: added CI/CD pipeline

Author: monokkai

.github/workflows/ci.yml

@@ -0,0 +1,82 @@
+name: DevSecOps CLI CI/CD
+
+on: [ push, pull_request ]
+
+env:
+  DOCKERHUB_REPO: monokkay/devsecops-cli
+  CARGO_TERM_COLOR: always
+
+jobs:
+  test:
+    runs-on: ubuntu-latest
+    steps:
+      - uses: actions/checkout@v4
+
+      - name: Setup Rust
+        uses: actions-rs/toolchain@v1
+        with:
+          profile: minimal
+          toolchain: stable
+          components: rustfmt, clippy
+          override: true
+
+      - name: Cache dependencies
+        uses: actions/cache@v3
+        with:
+          path: |
+            ~/.cargo/registry
+            ~/.cargo/git
+            target
+          key: ${{ runner.os }}-cargo-${{ hashFiles('**/Cargo.lock') }}
+
+      - name: Run tests
+        run: cargo test --all-features --workspace -- --nocapture
+
+      - name: Security audit
+        run: cargo audit --deny warnings
+
+      - name: Format check
+        run: cargo fmt --all -- --check
+
+      - name: Clippy check
+        run: cargo clippy --all-targets --all-features -- -D warnings
+
+  release:
+    needs: test
+    runs-on: ubuntu-latest
+    if: startsWith(github.ref, 'refs/tags/v')
+
+    steps:
+      - uses: actions/checkout@v4
+
+      - name: Login to DockerHub
+        uses: docker/login-action@v2
+        with:
+          username: ${{ secrets.DOCKERHUB_USERNAME }}
+          password: ${{ secrets.DOCKERHUB_TOKEN }}
+
+      - name: Setup Docker Buildx
+        uses: docker/setup-buildx-action@v2
+
+      - name: Build and push Docker image
+        uses: docker/build-push-action@v4
+        with:
+          context: .
+          platforms: linux/amd64,linux/arm64
+          push: true
+          tags: |
+            ${{ env.DOCKERHUB_REPO }}:latest
+            ${{ env.DOCKERHUB_REPO }}:${{ github.ref_name }}
+          build-args: |
+            RUST_VERSION=1.70.0
+
+      - name: Create GitHub release
+        uses: softprops/action-gh-release@v1
+        with:
+          name: ${{ github.ref_name }}
+          body: ${{ github.event.release.body }}
+          draft: false
+          prerelease: false
+          files: |
+            target/release/monokkai
+            target/release/monokkai-http

src/.github/workflows/release.yml .github/workflows/release.ymlsrc/.github/workflows/release.yml renamed to .github/workflows/release.yml

@@ -15,7 +15,8 @@ reqwest = { version = "0.11", features = ["blocking", "json"] }
 serde = { version = "1.0", features = ["derive"] }
 serde_json = "1.0"
 jsonwebtoken = "8.0"
-dotenv = "0.15"            # For .env config
-shellexpand = "3.0"        # For path expansion
+dotenv = "0.15"
+shellexpand = "3.0"
 colored = { version = "2.0", features = ["no-color"] }
-terminal_size = "0.2"
+terminal_size = "0.2"
+libloading = "0.8"

Cargo.lock

@@ -0,0 +1,20 @@
+use serde::{Deserialize, Serialize};
+use std::collections::HashMap;
+
+#[derive(Serialize, Deserialize)]
+pub struct ModuleConfig {
+    pub enabled: bool,
+    pub settings: HashMap<String, String>,
+}
+
+#[derive(Serialize, Deserialize)]
+pub struct AppConfig {
+    pub version: String,
+    pub modules: HashMap<String, ModuleConfig>,
+}
+
+impl AppConfig {
+    pub fn load() -> Self {
+        // Loading from ... config.toml + env vars
+    }
+}

Cargo.toml

@@ -0,0 +1,51 @@
+use libloading::{Library, Symbol};
+use std::path::{Path, PathBuf};
+use std::sync::Arc;
+use thiserror::Error;
+
+#[derive(Error, Debug)]
+pub enum PluginError {
+    #[error("Failed to load library: {0}")]
+    LibraryError(#[from] libloading::Error),
+    #[error("Plugin initialization failed")]
+    InitError,
+}
+
+pub trait Plugin: Send + Sync {
+    fn name(&self) -> &str;
+    fn execute(&self, args: Vec<String>) -> Result<(), Box<dyn std::error::Error>>;
+}
+
+type PluginInit = unsafe fn() -> *mut dyn Plugin;
+
+pub struct PluginManager {
+    plugins: Vec<Arc<dyn Plugin>>,
+    libraries: Vec<Library>,
+}
+
+impl PluginManager {
+    pub fn new() -> Self {
+        Self {
+            plugins: Vec::new(),
+            libraries: Vec::new(),
+        }
+    }
+
+    pub fn load(&mut self, path: impl AsRef<Path>) -> Result<(), PluginError> {
+        let path = path.as_ref();
+        unsafe {
+            let lib = Library::new(path)?;
+            let init: Symbol<PluginInit> = lib.get(b"init")?;
+            let plugin = Box::from_raw(init());
+
+            self.plugins.push(Arc::from(plugin));
+            self.libraries.push(lib);
+
+            Ok(())
+        }
+    }
+
+    pub fn get_plugin(&self, name: &str) -> Option<&Arc<dyn Plugin>> {
+        self.plugins.iter().find(|p| p.name() == name)
+    }
+}

src/.github/workflows/ci.yml

@@ -1,3 +1,2 @@
 pub mod git;
-pub mod docker;
-// pub mod auth;
+pub mod docker;