🌾 Code Haven¶
One line to rule them all¶
Code Haven is a zero-config, auto-detecting CI/CD pipeline system for GitHub Actions. Drop your code into a repo, add one line to your workflow file, and the pipeline figures out the rest — what language you're using, what to build, what to test, what to scan, and what to deploy.
Built for developers who don't want to think about DevSecOps plumbing.
How it works¶
.github/workflows/ci.yml
name: CI/CD
on:
push:
branches: [main, develop]
pull_request:
branches: [main]
jobs:
ci:
uses: code-haven/.github/workflows/devsecops.yml@main
secrets: inherit
That's it. The pipeline will:
- 🔍 Detect your languages (Java, Go, Python, Rust, .NET, PHP, Node.js, Angular)
- 🔨 Build & test everything it finds
- 🔒 Scan for security issues (SAST, secrets, dependencies, containers, IaC)
- 🐳 Containerize and push Docker images to GHCR
- 📄 Deploy reports to GitHub Pages
Supported Stacks¶
| Language | Build | Test | Lint/Format | Docs | Deploy |
|---|---|---|---|---|---|
| ☕ Java (Maven) | ✅ | ✅ | ✅ revelc/spotify | ✅ Javadoc | — |
| 🐘 Java (Gradle) | ✅ | ✅ | — | ✅ Javadoc | — |
| 📦 Node.js | ✅ | ✅ | — | — | — |
| 🅰 Angular | ✅ | ✅ | ✅ ng lint | — | — |
| 🐍 Python | ✅ | ✅ pytest | ✅ tox | ✅ MkDocs | ✅ PyPI |
| 🐹 Go | ✅ | ✅ gotestsum | ✅ golangci-lint, gofmt, vet | — | — |
| 🦀 Rust | ✅ | ✅ | ✅ clippy, rustfmt | ✅ rustdoc | — |
| 🔷 .NET | ✅ | ✅ | ✅ dotnet format | — | ✅ NuGet |
| 🐘 PHP | — | ✅ PHPUnit | ✅ Twig lint | — | — |
| 🐳 Docker | ✅ Buildx | — | ✅ Hadolint | — | ✅ GHCR |
| ⎈ Helm | ✅ lint | — | — | — | ✅ OCI push |
Quick Links¶
- Getting Started — Set up in 5 minutes
- Architecture — How the modular system works
- Configuration — All inputs, secrets, and toggles
- Examples — Real-world pipeline configurations
- Migration Guide — Coming from GitLab CI?