Skip to content

Releases: Hack23/homepage

Hack23 Homepage v0.0.2

20 Feb 13:24
Immutable release. Only release title and notes can be modified.

Choose a tag to compare

Highlights

🏗️ Infrastructure & DevOps

🔒 Security & Compliance

🌐 Internationalization

  • Add new project pages for European Parliament MCP Server, Riksdagsmonitor, and EU Parliament Monitor with sitemap updates @copilot-swe-agent[bot] (#1063)
  • Add European Parliament MCP Server, Riksdagsmonitor, and EU Parliament Monitor to projects pages with full i18n @copilot-swe-agent[bot] (#1071)
  • Add EU Parliament Monitor project pages with full ISMS documentation links @copilot-swe-agent[bot] (#1070)

📦 Dependencies

🔍 Content & SEO

🏆 Hack23 Quality & Security Badges

SLSA 3
OpenSSF Scorecard
CLA assistant

📋 ISMS Public Policies

Hack23 is committed to transparency and evidence-based security. All policies are publicly available:

ISMS Public
Information Security Policy
Open Source Policy
Secure Development Policy

📊 Quality & Security Reports

This release includes comprehensive quality assurance and security validation:

🔒 Supply Chain Security (SLSA Build Level 3)

  • Build Provenance Attestation: View Attestations
  • 📦 SBOM (SPDX format): homepage-v0.0.2.spdx.json
  • 🔐 GitHub OIDC Signing: Ephemeral credentials, no long-lived secrets
  • 🛡️ Tag-Triggered Parameterless Builds: Reproducible builds from source tags (workflow_dispatch allows version parameter input)

🧪 Test & Quality Reports (docs/ directory)

📈 Quality Metrics

  • Lighthouse Performance: > 90
  • Lighthouse Accessibility: 100 (WCAG 2.1 AA)
  • Lighthouse SEO: 100
  • Lighthouse Best Practices: 100
  • HTML Validation: Pass (W3C)
  • Security Score: OpenSSF Scorecard tracked

🌐 Deployment Targets

🔐 Verify Release Artifacts

Verify Build Attestations

# Install GitHub CLI (gh) if not already installed
# Download and verify the release artifact
gh attestation verify homepage-v0.0.2.zip --owner Hack23

View SBOM (Software Bill of Materials)

# Download the SBOM from release assets
gh release download v0.0.2 --repo Hack23/homepage --pattern "homepage-v0.0.2.spdx.json"

# View SBOM in JSON format
cat homepage-v0.0.2.spdx.json | jq

# Extract package list from SBOM
cat homepage-v0.0.2.spdx.json | jq '.packages[] | {name, version}'

Verify Release Signature

# Verify the release was signed with GitHub's OIDC provider
gh attestation verify homepage-v0.0.2.zip \
  --owner Hack23 \
  --signer-workflow Hack23/homepage/.github/workflows/release.yml

🙏 Contributors

Thanks to @Copilot, @dependabot[bot], @pethers, Copilot, copilot-swe-agent[bot] and dependabot[bot] for their contributions to this release!


Full Changelog: v0.0.1...v0.0.2

Hack23 Homepage v0.0.1

18 Feb 07:24
Immutable release. Only release title and notes can be modified.

Choose a tag to compare

Highlights

Read more