every-channel/every.channel

every.channel 7d84510eac

Advance forge rollout, Ethereum rails, and NBC sources

2026-04-01 15:58:49 -07:00

1.1 KiB

Raw Blame History

Sovereign Deploy: `ecp-forge`

This repository owns deployment of git.every.channel (Hetzner 300TB host).

Requirements

SSH access to root@git.every.channel.
Local key that matches host authorized_keys (default: ~/.ssh/id_ed25519).
nix with flakes enabled.

Deploy

./scripts/deploy-ecp-forge.sh

For the OP Stack operator path and observation-rail validation, see:

cat docs/OP_STACK_ECP_FORGE.md

Equivalent:

NIX_SSHOPTS="-o BatchMode=yes -o IdentityAgent=none -o IdentitiesOnly=yes -i ~/.ssh/id_ed25519" \
nix run nixpkgs#nixos-rebuild -- \
  --flake .#ecp-forge \
  --target-host root@git.every.channel \
  --build-host root@git.every.channel \
  --use-remote-sudo \
  switch

Overrides

EVERY_CHANNEL_FORGE_TARGET_HOST (default root@git.every.channel)
EVERY_CHANNEL_FORGE_BUILD_HOST (default same as target)
EVERY_CHANNEL_FORGE_SSH_IDENTITY (default ~/.ssh/id_ed25519)

Verify

ssh -o BatchMode=yes -o IdentityAgent=none -i ~/.ssh/id_ed25519 root@git.every.channel \
  'hostnamectl --static; systemctl is-active forgejo caddy every-channel-netboot-stage every-channel-netboot'