ci: add GitHub Actions workflows for chart validation and release (#1)

* ci: add GitHub Actions workflows for chart validation and release

- helm-lint workflow for PR validation with chart-testing
- helm-release workflow for automated OCI publishing on tags
- Auto-generated changelog from git commits
- Chart versioning from git tags

Author: BhagyaAmarasinghe

.github/workflows/helm-lint.yaml

@@ -0,0 +1,57 @@
+name: Helm Chart Lint and Test
+
+on:
+  pull_request:
+    branches:
+      - main
+    paths:
+      - '**/*.yaml'
+      - '**/*.yml'
+      - '**/*.tpl'
+      - 'Chart.yaml'
+      - 'values.yaml'
+  push:
+    branches:
+      - main
+    paths:
+      - '**/*.yaml'
+      - '**/*.yml'
+      - '**/*.tpl'
+      - 'Chart.yaml'
+      - 'values.yaml'
+
+jobs:
+  lint-test:
+    runs-on: ubuntu-latest
+    steps:
+      - name: Checkout repository
+        uses: actions/checkout@v4
+        with:
+          fetch-depth: 0
+
+      - name: Set up Helm
+        uses: azure/setup-helm@v4
+        with:
+          version: v3.16.4
+
+      - name: Set up Python
+        uses: actions/setup-python@v5
+        with:
+          python-version: '3.12'
+
+      - name: Set up chart-testing
+        uses: helm/chart-testing-action@v2.7.0
+
+      - name: Run chart-testing (lint)
+        run: ct lint --charts charts/hub --validate-maintainers=false
+
+      - name: Helm lint
+        run: helm lint charts/hub
+
+      - name: Helm template
+        run: |
+          helm template test charts/hub > /dev/null
+          helm template test charts/hub --values examples/minimal-values.yaml > /dev/null
+          helm template test charts/hub --values examples/production-values.yaml > /dev/null
+          helm template test charts/hub --values examples/external-database.yaml > /dev/null
+

.github/workflows/helm-release.yaml

@@ -0,0 +1,125 @@
+name: Release Helm Chart
+
+on:
+  push:
+    tags:
+      - 'v*.*.*'
+
+permissions:
+  contents: write
+  packages: write
+
+jobs:
+  release:
+    runs-on: ubuntu-latest
+    steps:
+      - name: Checkout repository
+        uses: actions/checkout@v4
+        with:
+          fetch-depth: 0
+
+      - name: Configure Git
+        run: |
+          git config user.name "$GITHUB_ACTOR"
+          git config user.email "$GITHUB_ACTOR@users.noreply.github.com"
+
+      - name: Set up Helm
+        uses: azure/setup-helm@v4
+        with:
+          version: v3.16.4
+
+      - name: Extract version from tag
+        id: version
+        run: |
+          VERSION=${GITHUB_REF#refs/tags/v}
+          echo "version=$VERSION" >> $GITHUB_OUTPUT
+          echo "Chart will be versioned as: $VERSION"
+
+      - name: Update Chart.yaml with release version
+        run: |
+          VERSION="${{ steps.version.outputs.version }}"
+          sed -i "s/^version:.*/version: $VERSION/" charts/hub/Chart.yaml
+          sed -i "s/^appVersion:.*/appVersion: \"$VERSION\"/" charts/hub/Chart.yaml
+          cat charts/hub/Chart.yaml
+
+      - name: Package Helm chart
+        run: |
+          helm package charts/hub --dependency-update
+          echo "Packaged chart:"
+          ls -lh *.tgz
+
+      - name: Login to GitHub Container Registry
+        uses: docker/login-action@v3
+        with:
+          registry: ghcr.io
+          username: ${{ github.actor }}
+          password: ${{ secrets.GITHUB_TOKEN }}
+
+      - name: Push chart to GHCR
+        run: |
+          CHART_FILE=$(ls hub-*.tgz)
+          helm push $CHART_FILE oci://ghcr.io/${{ github.repository_owner }}/charts
+          echo "Chart pushed to: oci://ghcr.io/${{ github.repository_owner }}/charts/hub:${{ steps.version.outputs.version }}"
+
+      - name: Generate changelog
+        id: changelog
+        run: |
+          # Get previous tag
+          PREVIOUS_TAG=$(git describe --tags --abbrev=0 HEAD^ 2>/dev/null || echo "")
+
+          if [ -z "$PREVIOUS_TAG" ]; then
+            # First release - get all commits
+            CHANGELOG=$(git log --pretty=format:"- %s (%h)" --no-merges)
+          else
+            # Get commits since last tag
+            CHANGELOG=$(git log ${PREVIOUS_TAG}..HEAD --pretty=format:"- %s (%h)" --no-merges)
+          fi
+
+          # Save to file for use in release
+          echo "$CHANGELOG" > changelog.txt
+
+          # Output for GitHub Actions
+          echo "previous_tag=$PREVIOUS_TAG" >> $GITHUB_OUTPUT
+
+      - name: Create GitHub Release
+        uses: softprops/action-gh-release@v2
+        with:
+          files: |
+            hub-*.tgz
+          body: |
+            ## Helm Chart Release ${{ steps.version.outputs.version }}
+
+            ### Installation
+
+            ```bash
+            helm install hub oci://ghcr.io/${{ github.repository_owner }}/charts/hub --version ${{ steps.version.outputs.version }}
+            ```
+
+            ### Pull Chart
+
+            ```bash
+            helm pull oci://ghcr.io/${{ github.repository_owner }}/charts/hub --version ${{ steps.version.outputs.version }}
+            ```
+
+            ### Changes in this Release
+
+            ${{ steps.changelog.outputs.previous_tag && format('Changes since {0}:', steps.changelog.outputs.previous_tag) || 'Initial release' }}
+
+            $(cat changelog.txt)
+
+            ---
+            **Full Changelog**: https://github.com/${{ github.repository }}/compare/${{ steps.changelog.outputs.previous_tag }}...v${{ steps.version.outputs.version }}
+        env:
+          GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
+
+      - name: Chart release summary
+        run: |
+          echo "## Helm Chart Released Successfully" >> $GITHUB_STEP_SUMMARY
+          echo "" >> $GITHUB_STEP_SUMMARY
+          echo "**Version:** ${{ steps.version.outputs.version }}" >> $GITHUB_STEP_SUMMARY
+          echo "**Registry:** ghcr.io/${{ github.repository_owner }}/charts/hub" >> $GITHUB_STEP_SUMMARY
+          echo "" >> $GITHUB_STEP_SUMMARY
+          echo "### Installation Command" >> $GITHUB_STEP_SUMMARY
+          echo '```bash' >> $GITHUB_STEP_SUMMARY
+          echo "helm install hub oci://ghcr.io/${{ github.repository_owner }}/charts/hub --version ${{ steps.version.outputs.version }}" >> $GITHUB_STEP_SUMMARY
+          echo '```' >> $GITHUB_STEP_SUMMARY

README.md

@@ -78,7 +78,7 @@ helm lint charts/hub
 
 3. Template the chart:
 ```bash
-helm template test charts/hub --values charts/hub/examples/minimal-values.yaml
+helm template test charts/hub --values examples/minimal-values.yaml
 ```
 
 4. Test installation on a local cluster (kind/minikube):

charts/hub/README.md

@@ -144,7 +144,7 @@ This command removes all the Kubernetes components associated with the chart and
 
 ### Production Deployment
 
-See [examples/production-values.yaml](./examples/production-values.yaml) for a complete production configuration with:
+See [examples/production-values.yaml](../../examples/production-values.yaml) for a complete production configuration with:
 - High availability (3 replicas)
 - Autoscaling
 - CloudNativePG with backups
@@ -159,7 +159,7 @@ helm install hub oci://ghcr.io/formbricks/charts/hub \
 
 ### External Database
 
-See [examples/external-database.yaml](./examples/external-database.yaml) for using a managed database service (AWS RDS, Google Cloud SQL, etc.):
+See [examples/external-database.yaml](../../examples/external-database.yaml) for using a managed database service (AWS RDS, Google Cloud SQL, etc.):
 
 ```bash
 helm install hub oci://ghcr.io/formbricks/charts/hub \
@@ -168,7 +168,7 @@ helm install hub oci://ghcr.io/formbricks/charts/hub \
 
 ### Minimal Development Setup
 
-See [examples/minimal-values.yaml](./examples/minimal-values.yaml) for a minimal configuration suitable for development:
+See [examples/minimal-values.yaml](../../examples/minimal-values.yaml) for a minimal configuration suitable for development:
 
 ```bash
 helm install hub oci://ghcr.io/formbricks/charts/hub \

charts/hub/ci/ci-values.yaml

@@ -29,6 +29,7 @@ cloudnativepg:
   enabled: true
   cluster:
     instances: 1
+    imageName: ghcr.io/cloudnative-pg/postgresql:18.0-standard-bookworm
     storage:
       size: 1Gi
     resources:

charts/hub/templates/database.yaml

@@ -0,0 +1,17 @@
+{{- if .Values.cloudnativepg.enabled }}
+apiVersion: postgresql.cnpg.io/v1
+kind: Database
+metadata:
+  name: {{ include "hub.fullname" . }}
+  labels:
+    {{- include "hub.labels" . | nindent 4 }}
+spec:
+  cluster:
+    name: {{ include "hub.fullname" . }}
+  name: {{ .Values.cloudnativepg.cluster.bootstrap.initdb.database }}
+  owner: {{ .Values.cloudnativepg.cluster.bootstrap.initdb.owner }}
+  ensure: present
+  extensions:
+    - name: vector
+      ensure: present
+{{- end }}

charts/hub/values.yaml

@@ -226,8 +226,8 @@ cloudnativepg:
     ## Number of instances in the cluster
     instances: 3
 
-    ## PostgreSQL version
-    imageName: ghcr.io/cloudnative-pg/postgresql:18
+    ## PostgreSQL version (standard image includes pgvector)
+    imageName: ghcr.io/cloudnative-pg/postgresql:18.0-standard-bookworm
 
     ## Storage configuration
     storage:
@@ -249,7 +249,6 @@ cloudnativepg:
         work_mem: "2621kB"
         min_wal_size: "1GB"
         max_wal_size: "4GB"
-        shared_preload_libraries: "vector"
 
     ## Bootstrap configuration
     bootstrap:

…arts/hub/examples/external-database.yaml examples/external-database.yamlcharts/hub/examples/external-database.yaml renamed to examples/external-database.yaml charts/hub/examples/external-database.yaml renamed to examples/external-database.yaml

@@ -93,7 +93,7 @@ cloudnativepg:
   enabled: true
   cluster:
     instances: 3
-    imageName: ghcr.io/cloudnative-pg/postgresql:18
+    imageName: ghcr.io/cloudnative-pg/postgresql:18.0-standard-bookworm
     storage:
       size: 50Gi
       storageClass: "gp3"
@@ -103,7 +103,6 @@ cloudnativepg:
         shared_buffers: "512MB"
         effective_cache_size: "2GB"
         maintenance_work_mem: "128MB"
-        shared_preload_libraries: "vector"
     backup:
       enabled: true
       schedule: "0 2 * * *"