Skip to content

Hack23 Homepage v1.0.21

Latest
Latest

Choose a tag to compare

View all tags
@github-actions github-actions released this 13 Jun 23:20
Immutable release. Only release title and notes can be modified.
v1.0.21
09475dc

Highlights

πŸ—οΈ Infrastructure & DevOps

πŸ”’ Security & Compliance

🌐 Internationalization

🎨 UI/UX Improvements

πŸ“š Documentation

πŸ”„ Code Quality & Refactoring

πŸ€– GitHub Copilot & AI

πŸ” Content & SEO

🎯 Specific Areas

πŸ† Hack23 Quality & Security Badges

SLSA 3
OpenSSF Scorecard
CLA assistant

πŸ“‹ ISMS Public Policies

Hack23 is committed to transparency and evidence-based security. All policies are publicly available:

ISMS Public
Information Security Policy
Open Source Policy
Secure Development Policy

πŸ“Š Quality & Security Reports

This release includes comprehensive quality assurance and security validation:

πŸ”’ Supply Chain Security (SLSA Build Level 3)

  • βœ… Build Provenance Attestation: View Attestations
  • πŸ“¦ SBOM (SPDX format): homepage-v1.0.21.spdx.json
  • πŸ” GitHub OIDC Signing: Ephemeral credentials, no long-lived secrets
  • πŸ›‘οΈ Tag-Triggered Parameterless Builds: Reproducible builds from source tags (workflow_dispatch allows version parameter input)

πŸ§ͺ Test & Quality Reports (docs/ directory)

πŸ“ˆ Quality Metrics

  • Lighthouse Performance: > 90
  • Lighthouse Accessibility: 100 (WCAG 2.1 AA)
  • Lighthouse SEO: 100
  • Lighthouse Best Practices: 100
  • HTML Validation: Pass (W3C)
  • Security Score: OpenSSF Scorecard tracked

🌐 Deployment Targets

πŸ” Verify Release Artifacts

Verify Build Attestations

# Install GitHub CLI (gh) if not already installed
# Download and verify the release artifact
gh attestation verify homepage-v1.0.21.zip --owner Hack23

View SBOM (Software Bill of Materials)

# Download the SBOM from release assets
gh release download v1.0.21 --repo Hack23/homepage --pattern "homepage-v1.0.21.spdx.json"

# View SBOM in JSON format
cat homepage-v1.0.21.spdx.json | jq

# Extract package list from SBOM
cat homepage-v1.0.21.spdx.json | jq '.packages[] | {name, version}'

Verify Release Signature

# Verify the release was signed with GitHub's OIDC provider
gh attestation verify homepage-v1.0.21.zip \
  --owner Hack23 \
  --signer-workflow Hack23/homepage/.github/workflows/release.yml

πŸ™ Contributors

Thanks to @Copilot, @pethers and copilot-swe-agent[bot] for their contributions to this release!

Full Changelog: v1.0.20...v1.0.21

πŸ“¦ Release Artifacts

  • homepage-v1.0.21.zip - Complete website package (minified HTML/CSS/JS)
  • homepage-v1.0.21.zip.sha256 - Checksum for verification
  • homepage-v1.0.21.spdx.json - SBOM (Software Bill of Materials)
  • *.intoto.jsonl - SLSA Build Provenance Attestations

πŸ” Security

All artifacts include SLSA Build Provenance attestations and SBOM for supply chain security.
Verify artifacts using the GitHub CLI:

# Verify checksum
sha256sum -c homepage-v1.0.21.zip.sha256

# Verify build attestation
gh attestation verify homepage-v1.0.21.zip -R Hack23/homepage

Contributors

pethers
Assets 8
Loading