v1.0.7

What's Changed

• deprecated: remove unused logs from cloudwatch by @edersonbrilhante in #37
• docs: improve docs by adding deployment docs by @edersonbrilhante in #38
• docs: fix examples for forge tenant and forge eks by @edersonbrilhante in #39
• docs: adjust deployment docs with new yaml config by @edersonbrilhante in #40
• docs: add forge extras example by @edersonbrilhante in #41
• docs: fix splunk deployment example by @edersonbrilhante in #42
• docs: add docs how build gh base image by @edersonbrilhante in #43

Full Changelog: v1.0.6...v1.0.7

v1.0.6

What's Changed

• refactor: decouple splunk otel from eks by @edersonbrilhante in #29
• feat: add module to install otel in eks cluster by @edersonbrilhante in #30
• feat: add valid example for packer build by @edersonbrilhante in #31
• docs: add examples for forge integrations by @edersonbrilhante in #32
• refactor: move splunk secrets to integration folder by @edersonbrilhante in #33
• refactor: use new splunk secrets in splunk modules by @edersonbrilhante in #34
• docs: add deployment example for splunk deployment by @edersonbrilhante in #35
• docs: add examples for extra modules by @edersonbrilhante in #36

Full Changelog: v1.0.5...v1.0.6

v1.0.5

What's Changed

• feat: make the arc template readable by @edersonbrilhante in #21
• fix: reduce number of changes in tenants deployments by @edersonbrilhante in #22
• feat: add splunk config to extract github runner version by @edersonbrilhante in #23
• feat: add function to create runner group if is not created by @edersonbrilhante in #24
• fix: allow runner group sync to work in onprem by @edersonbrilhante in #25
• feat: add code helper to automated gh app creation by @edersonbrilhante in #26
• docs: add docs for starter tenant by @edersonbrilhante in #27
• chore: move forge-github-app-register under docker folder by @edersonbrilhante in #28

Full Changelog: v1.0.4...v1.0.5

v1.0.4

What's Changed

• docs: fix broken links by @edersonbrilhante in #15
• docs(README): simplify wording and structure for clarity by @edersonbrilhante in #16
• feat: allow custom ecr repos by @edersonbrilhante in #17
• feat: allow tenants to subscribe to different regions by @edersonbrilhante in #18
• refactor: remove hardcoded config for teleport by @edersonbrilhante in #19

Full Changelog: v1.0.3...v1.0.4

v1.0.3

What's Changed

• feat: add logic to update webhook and secret automatically by @edersonbrilhante in #14

Full Changelog: v1.0.2...v1.0.3

v1.0.2

What's Changed

• ci(fix): use main tag in pre-commit job by @edersonbrilhante in #8
• docs: improve README with better context by @edersonbrilhante in #9
• feat: add ansible roles to build forge base image by @edersonbrilhante in #10
• docs: add deps modules by @edersonbrilhante in #11
• docs: add tenant-oriented documentation by @edersonbrilhante in #12
• docs: add index.md in folder docs by @edersonbrilhante in #13

Full Changelog: v1.0.1...v1.0.2

v1.0.1

What's Changed

• refactor: replace old example with clear terragrunt example by @edersonbrilhante in #3
• feat: add templates for issues and prs by @Rostislavz in #4
• fix: add escape in hook json by @edersonbrilhante in #5
• ci: add pre-commit docker and pipeline by @edersonbrilhante in #6
• fix: fix karpenter config for eks by @edersonbrilhante in #7

New Contributors

• @Rostislavz made their first contribution in #4

Full Changelog: v1.0.0...v1.0.1

v1.0.0

ForgeMT v1.0.0 – Scalable, Secure, Multi-Tenant GitHub Actions Platform

🧱 Runner Types

EC2 Runners

Provisioned via the ec2_deployment module:

• GitHub webhook-based lifecycle (started / completed)
• Dynamic user data provisioning
• Secure access via IAM OIDC
• Full observability via Splunk (logs and execution metrics)

Kubernetes Runners (EKS)

Deployed via the arc module:

• Docker and non-Docker runner support
• Helm charts for DinD-based runners (scale_set)
• Custom controller to reconcile GitHub jobs (scale_set_controller)
• Pod-level network isolation with Calico CNI
• Auto scaling with Karpenter
• GitHub App-based integration and auth

---

☁️ Infrastructure & Scalability

Modular and fully Terraform-driven:

• eks: Cluster, node groups, addons, Karpenter, Calico, OpenTelemetry
• ec2: Auto-scaling EC2 setup, lifecycle hooks, security groups
• ami, ami_sharing: Managed and cross-account shared AMIs
• secrets, storage: Secrets management and S3 buckets
• budget, billing, opt_in_regions: FinOps and region control
• cloud_custodian, cloudformation: Governance and provisioning
• service_linked_roles, forge_subscription: Baseline AWS setup for multi-account environments

---

🔌 Integrations

Splunk

• splunk_cloud_* modules for CI/CD log and metric ingestion
• Dashboard and transform templates
• Automation scripts for integration setup (create_splunk_integration.sh, etc.)

Teleport

• Multi-tenant access control integration for secure environments

---

🔧 Core Platform Modules

• arc: Runner engine for Kubernetes-based runners

  • scale_set: Helm chart and templates (dind.yml, k8s.yml, hooks)
  • scale_set_controller: Helm chart and dynamic values.yml.tftpl

• forge_runners: Registers repos and runner groups via GitHub App + Lambda

• global_lock: Global lock mechanism with automatic cleanup

• scripts and lambdas: Utilities for GitHub API interaction

---

📈 Observability & Metrics

• End-to-end job tracking built-in
• Tenant-specific Splunk dashboards
• OpenTelemetry support in EKS

---

✅ Requirements

• [OpenTofu](https://opentofu.org/) v1.9.1
• GitHub App with proper permissions
• AWS OIDC trust and standardized tagging