Tech Story
As a platform engineer, I want station-bot deployments to use the same automated CI/CD pipeline and secrets management pattern as Station, so that both services have a consistent, auditable, and secure deployment process.
Current state
Station-bot is deployed manually:
- SSH as deploy user
- `cd /opt/station-bot && docker compose -f docker-compose.prod.yml pull`
- Stop and restart services
- Run migrations if needed
- Check logs
Target state
Mirror the Station CI/CD pattern:
- Release-tag triggered GitHub Actions workflow in the station-bot repo
- SSH deploy step runs a `deploy-station-bot.sh` script on the VPS
- Secrets stored in GitHub environment-scoped secrets (not repo-level)
- Pre-deploy postgres backup before any migration run
- Post-deploy health check and log tail
- Deploy script committed to station-bot repo under `infra/scripts/`
Dependencies
Tech Story
As a platform engineer, I want station-bot deployments to use the same automated CI/CD pipeline and secrets management pattern as Station, so that both services have a consistent, auditable, and secure deployment process.
Current state
Station-bot is deployed manually:
Target state
Mirror the Station CI/CD pattern:
Dependencies