Skip to content
Merged
Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
23 commits
Select commit Hold shift + click to select a range
96a3c55
Update issue templates
DavidKRK Feb 16, 2026
c860f7d
chore: mise à jour automatique des dépendances npm (#133)
github-actions[bot] Feb 17, 2026
9d83afd
Update backup.yml
DavidKRK Feb 17, 2026
28b92e1
feat: app DJ (2 decks, crossfader, EQ, pitch)
DavidKRK Feb 19, 2026
98c8dc4
Initial plan (#134)
Codex Feb 22, 2026
6d77aa3
chore: mise à jour automatique des dépendances npm (#135)
github-actions[bot] Feb 23, 2026
d1f1c53
Update bio.html
DavidKRK Mar 1, 2026
cfc8a9a
Update README.md
DavidKRK Mar 1, 2026
652a4df
build(deps): bump braces and live-server (#136)
dependabot[bot] Mar 2, 2026
c9068a3
fix: harmoniser le style du cadre gris autour du titre Bio
DavidKRK Mar 2, 2026
93a0866
fix: ajout cadre gris titre Contact + suppression section email directe
DavidKRK Mar 2, 2026
80c4bd8
Update index.html
DavidKRK Mar 4, 2026
f3a9bda
Create codeql.yml
DavidKRK Mar 4, 2026
b7232c2
Potential fix for code scanning alert no. 1: Workflow does not contai…
DavidKRK Mar 4, 2026
1c919ab
Potential fix for code scanning alert no. 1: Workflow does not contai…
DavidKRK Mar 12, 2026
734e3cd
chore: mise à jour automatique des dépendances npm
DavidKRK Mar 16, 2026
f175e85
build(deps): bump json from 2.15.1 to 2.15.2.1 (#144)
dependabot[bot] Mar 22, 2026
92941b3
Add Date
DavidKRK Mar 22, 2026
5e52458
Merge pull request #142 from DavidKRK:auto-update-dependencies
DavidKRK Mar 22, 2026
c927889
chore: plan to fix Snyk security vulnerabilities
Copilot Apr 4, 2026
054f6af
fix: replace live-server with serve to eliminate Snyk security vulner…
Copilot Apr 4, 2026
5a98d31
chore: untrack node_modules/.package-lock.json (npm-generated artifact)
Copilot Apr 4, 2026
2b66a7a
Merge pull request #147 from DavidKRK/copilot/fix-snyk-pr-checks-issue
DavidKRK Apr 4, 2026
File filter

Filter by extension

Filter by extension


Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
10 changes: 10 additions & 0 deletions .github/ISSUE_TEMPLATE/feature_request.md
Original file line number Diff line number Diff line change
@@ -0,0 +1,10 @@
---
name: Feature request
about: Suggest an idea for this project
title: ''
labels: automation
assignees: DavidKRK, Claude, Codex

Copilot AI Apr 4, 2026

Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

This feature request template sets assignees as a single comma-separated string, which YAML will parse as one value (not a list). If the intent is to assign multiple users, change it to a YAML list (e.g., bracket or multiline list) and ensure the usernames are valid collaborators in this repo.

Suggested change
assignees: DavidKRK, Claude, Codex
assignees:
- DavidKRK
- Claude
- Codex

Copilot uses AI. Check for mistakes.

---

[![Weekly Backup & Archive](https://github.com/DavidKRK/DavidKRK.github.io/actions/workflows/backup.yml/badge.svg)](https://github.com/DavidKRK/DavidKRK.github.io/actions/workflows/backup.yml)
50 changes: 12 additions & 38 deletions .github/workflows/backup.yml
Original file line number Diff line number Diff line change
Expand Up @@ -2,7 +2,6 @@ name: Weekly Backup & Archive

on:
schedule:
# Sauvegarde automatique chaque dimanche à 00:00 (UTC)
- cron: '0 0 * * 0'
workflow_dispatch:

Expand All @@ -13,67 +12,42 @@ jobs:
create-backup:
name: Create Weekly Backup
runs-on: ubuntu-latest

steps:
- name: Checkout gh-pages
uses: actions/checkout@v4
with:
ref: gh-pages
fetch-depth: 0

- name: Create backup branch if not exists
run: |
git fetch origin backups || git branch backups
git checkout -B backups
git push -f origin backups

- name: Generate backup
run: |
DATE=$(date +%Y-%m-%d_%H-%M-%S)
BACKUP_DIR="backup-$DATE"
mkdir -p "$BACKUP_DIR"
# Copy all files except .git and backups

# Copie du site en excluant .git et anciens backups
rsync -av --exclude='.git' --exclude='backup-*' ./ "$BACKUP_DIR/"
# Create archive

# Archive compressée
tar -czf "$BACKUP_DIR.tar.gz" "$BACKUP_DIR"

echo "Backup created: $BACKUP_DIR.tar.gz"
ls -lh "$BACKUP_DIR.tar.gz"

- name: Commit backup to backups branch
run: |
git config --local user.email "github-actions[bot]@users.noreply.github.com"
git config --local user.name "github-actions[bot]"

DATE=$(date +%Y-%m-%d_%H-%M-%S)

# Keep only the archive, not the folder
rm -rf backup-*/

git add *.tar.gz
git commit -m "backup: weekly archive $DATE" || echo "No changes to commit"
git push origin backups

- name: Cleanup old backups (keep last 8 weeks)
run: |
# Keep only the 8 most recent backup files
ls -t backup-*.tar.gz | tail -n +9 | xargs -r rm
git add -A
git commit -m "chore: cleanup old backups" || echo "No old backups to remove"
git push origin backups || true
# ⚠️ Plus de commit/push des .tar.gz dans 'backups'

- name: Create GitHub Release with backup
uses: softprops/action-gh-release@v1
with:
tag_name: backup-${{ github.run_number }}
name: Weekly Backup - $(date +%Y-%m-%d)
name: Weekly Backup - ${{ github.run_number }}
body: |
🗄️ **Automatic Weekly Backup**
Created: $(date)
🗄️ Automatic Weekly Backup

Created: ${{ github.run_id }}
Trigger: Scheduled (every Sunday)

This backup contains a complete snapshot of the website.
files: backup-*.tar.gz
draft: false
Comment on lines 40 to 53

Copilot AI Apr 4, 2026

Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Le workflow génère maintenant une Release GitHub chaque semaine avec un .tar.gz, mais il n'y a plus de mécanisme de rétention (le cleanup et la branche backups ont été retirés). À terme, cela peut accumuler beaucoup de Releases/stockage et devenir coûteux à opérer. Solution: ajouter une politique de rétention (suppression automatique des anciennes releases/tags), ou publier via Artifacts avec une durée de rétention configurée, ou conserver une stratégie de rotation similaire à l'ancienne (garder N backups).

Copilot uses AI. Check for mistakes.
Expand Down
103 changes: 103 additions & 0 deletions .github/workflows/codeql.yml
Original file line number Diff line number Diff line change
@@ -0,0 +1,103 @@
# For most projects, this workflow file will not need changing; you simply need
# to commit it to your repository.
#
# You may wish to alter this file to override the set of languages analyzed,
# or to provide custom queries or build logic.
#
# ******** NOTE ********
# We have attempted to detect the languages in your repository. Please check
# the `language` matrix defined below to confirm you have the correct set of
# supported CodeQL languages.
#
name: "CodeQL Advanced"

on:
push:
branches: [ "gh-pages" ]
pull_request:
branches: [ "gh-pages" ]
schedule:
- cron: '44 17 * * 1'

jobs:
analyze:
name: Analyze (${{ matrix.language }})
# Runner size impacts CodeQL analysis time. To learn more, please see:
# - https://gh.io/recommended-hardware-resources-for-running-codeql
# - https://gh.io/supported-runners-and-hardware-resources
# - https://gh.io/using-larger-runners (GitHub.com only)
# Consider using larger runners or machines with greater resources for possible analysis time improvements.
runs-on: ${{ (matrix.language == 'swift' && 'macos-latest') || 'ubuntu-latest' }}
permissions:
# required for all workflows
security-events: write

# required to fetch internal or private CodeQL packs
packages: read

# only required for workflows in private repositories
actions: read
contents: read

strategy:
fail-fast: false
matrix:
include:
- language: actions
build-mode: none
- language: javascript-typescript
build-mode: none
- language: ruby
build-mode: none
# CodeQL supports the following values keywords for 'language': 'actions', 'c-cpp', 'csharp', 'go', 'java-kotlin', 'javascript-typescript', 'python', 'ruby', 'rust', 'swift'
# Use `c-cpp` to analyze code written in C, C++ or both
# Use 'java-kotlin' to analyze code written in Java, Kotlin or both
# Use 'javascript-typescript' to analyze code written in JavaScript, TypeScript or both
# To learn more about changing the languages that are analyzed or customizing the build mode for your analysis,
# see https://docs.github.com/en/code-security/code-scanning/creating-an-advanced-setup-for-code-scanning/customizing-your-advanced-setup-for-code-scanning.
# If you are analyzing a compiled language, you can modify the 'build-mode' for that language to customize how
# your codebase is analyzed, see https://docs.github.com/en/code-security/code-scanning/creating-an-advanced-setup-for-code-scanning/codeql-code-scanning-for-compiled-languages
steps:
- name: Checkout repository
uses: actions/checkout@v4

# Add any setup steps before running the `github/codeql-action/init` action.
# This includes steps like installing compilers or runtimes (`actions/setup-node`
# or others). This is typically only required for manual builds.
# - name: Setup runtime (example)
# uses: actions/setup-example@v1

# Initializes the CodeQL tools for scanning.
- name: Initialize CodeQL
uses: github/codeql-action/init@v4
with:
languages: ${{ matrix.language }}
build-mode: ${{ matrix.build-mode }}
# If you wish to specify custom queries, you can do so here or in a config file.
# By default, queries listed here will override any specified in a config file.
# Prefix the list here with "+" to use these queries and those in the config file.

# For more details on CodeQL's query packs, refer to: https://docs.github.com/en/code-security/code-scanning/automatically-scanning-your-code-for-vulnerabilities-and-errors/configuring-code-scanning#using-queries-in-ql-packs
# queries: security-extended,security-and-quality

# If the analyze step fails for one of the languages you are analyzing with
# "We were unable to automatically build your code", modify the matrix above
# to set the build mode to "manual" for that language. Then modify this step
# to build your code.
# ℹ️ Command-line programs to run using the OS shell.
# 📚 See https://docs.github.com/en/actions/using-workflows/workflow-syntax-for-github-actions#jobsjob_idstepsrun
- name: Run manual build steps
if: matrix.build-mode == 'manual'
shell: bash
run: |
echo 'If you are using a "manual" build mode for one or more of the' \
'languages you are analyzing, replace this with the commands to build' \
'your code, for example:'
echo ' make bootstrap'
echo ' make release'
exit 1

- name: Perform CodeQL Analysis
uses: github/codeql-action/analyze@v4
with:
category: "/language:${{matrix.language}}"
3 changes: 3 additions & 0 deletions .github/workflows/social-media-post.yml
Original file line number Diff line number Diff line change
@@ -1,5 +1,8 @@
name: social-media-post

permissions:
contents: read

on:
# Pour l’instant: uniquement déclenché à la main depuis l’onglet Actions
workflow_dispatch:
Expand Down
2 changes: 1 addition & 1 deletion Gemfile.lock
Original file line number Diff line number Diff line change
Expand Up @@ -77,7 +77,7 @@ GEM
sass-embedded (~> 1.75)
jekyll-watch (2.2.1)
listen (~> 3.0)
json (2.15.1)
json (2.15.2.1)
kramdown (2.5.1)
rexml (>= 3.3.9)
kramdown-parser-gfm (1.1.0)
Expand Down
3 changes: 3 additions & 0 deletions README.md
Original file line number Diff line number Diff line change
Expand Up @@ -93,6 +93,9 @@ git push origin gh-pages

All rights reserved © 2026 David KRK

" MAY THE TECHNO BE WITH YOU "
David KRK
Comment on lines +96 to +97

Copilot AI Apr 4, 2026

Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Les nouvelles lignes ajoutées semblent contenir du whitespace superflu (espaces à l'intérieur des guillemets dans la phrase, et un espace final après le nom). Pour éviter les diffs inutiles et garder un README propre, retirer les espaces de fin de ligne et normaliser la phrase (même casse/orthographe que le reste du site si c'est voulu).

Suggested change
" MAY THE TECHNO BE WITH YOU "
David KRK
"MAY THE TECHNO BE WITH YOU"
David KRK

Copilot uses AI. Check for mistakes.

Comment on lines 93 to +98

Copilot AI Apr 4, 2026

Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

The PR description is still the default template and doesn’t describe the intent or scope of these changes (dependency swap, workflow changes, content edits, new JS). Please replace it with a short summary and, if applicable, link the related issue(s) so reviewers can validate the change rationale.

Copilot uses AI. Check for mistakes.
---

**© 2026 David KRK** | Spinning since September 1999 🎧
Loading
Loading