GHCR

Author: stuartasiimwe7

.github/workflows/ghcr-badges.yml

@@ -0,0 +1,49 @@
+name: GHCR Badges
+
+on:
+  schedule:
+    - cron: '0 * * * *'
+  workflow_dispatch:
+
+jobs:
+  compute:
+    runs-on: ubuntu-latest
+    permissions:
+      contents: write
+      packages: read
+    steps:
+      - name: Checkout
+        uses: actions/checkout@v4
+
+      - name: Fetch GHCR stats
+        id: fetch
+        env:
+          GH_TOKEN: ${{ secrets.GITHUB_TOKEN }}
+        run: |
+          set -euo pipefail
+          OWNER=stuartasiimwe7
+          REPO=Cloud-Security-Monitoring-API
+          PKG=$(echo "$REPO" | tr '[:upper:]' '[:lower:]')
+          # Fetch versions
+          URL="https://api.github.com/users/${OWNER}/packages/container/${PKG}/versions?per_page=100"
+          JSON=$(curl -sS -H "Authorization: Bearer ${GH_TOKEN}" -H "Accept: application/vnd.github+json" "$URL")
+          # Sum pulls and capture latest tag name if present
+          PULLS=$(echo "$JSON" | jq '[.[].metadata.container.download_count] | add // 0')
+          LATEST=$(echo "$JSON" | jq -r '.[0].metadata.container.tags[0] // "latest"')
+          TAGS=$(echo "$JSON" | jq '[.[].metadata.container.tags] | flatten | unique | length')
+          mkdir -p .github/badges
+          printf '{"schemaVersion":1,"label":"ghcr pulls","message":"%s","color":"blue"}\n' "$PULLS" > .github/badges/ghcr-pulls.json
+          printf '{"schemaVersion":1,"label":"latest tag","message":"%s","color":"green"}\n' "$LATEST" > .github/badges/ghcr-latest.json
+          printf '{"schemaVersion":1,"label":"tags","message":"%s","color":"informational"}\n' "$TAGS" > .github/badges/ghcr-tags.json
+
+      - name: Commit badge JSON
+        run: |
+          set -e
+          if [[ -n $(git status --porcelain .github/badges) ]]; then
+            git config user.name "github-actions"
+            git config user.email "github-actions@users.noreply.github.com"
+            git add .github/badges/*.json
+            git commit -m "chore(badges): update GHCR badge JSON"
+            git push
+          fi
+

README.md

@@ -1,4 +1,4 @@
-## Overview [![CI](https://github.com/stuartasiimwe7/cloud-security-monitoring-api/actions/workflows/ci.yml/badge.svg)](https://github.com/stuartasiimwe7/cloud-security-monitoring-api/actions/workflows/ci.yml) [![CD](https://github.com/stuartasiimwe7/cloud-security-monitoring-api/actions/workflows/cd.yml/badge.svg)](https://github.com/stuartasiimwe7/cloud-security-monitoring-api/actions/workflows/cd.yml)
+## Overview [![CI](https://github.com/stuartasiimwe7/cloud-security-monitoring-api/actions/workflows/ci.yml/badge.svg)](https://github.com/stuartasiimwe7/cloud-security-monitoring-api/actions/workflows/ci.yml) [![CD](https://github.com/stuartasiimwe7/cloud-security-monitoring-api/actions/workflows/cd.yml/badge.svg)](https://github.com/stuartasiimwe7/cloud-security-monitoring-api/actions/workflows/cd.yml) ![Downloads](https://img.shields.io/endpoint?url=https://raw.githubusercontent.com/stuartasiimwe7/Cloud-Security-Monitoring-API/main/.github/badges/ghcr-pulls.json) ![Latest](https://img.shields.io/endpoint?url=https://raw.githubusercontent.com/stuartasiimwe7/Cloud-Security-Monitoring-API/main/.github/badges/ghcr-latest.json) ![Tags](https://img.shields.io/endpoint?url=https://raw.githubusercontent.com/stuartasiimwe7/Cloud-Security-Monitoring-API/main/.github/badges/ghcr-tags.json)
 Cloud environments generate high-volume, high-velocity activity logs (for example, AWS CloudTrail) across many accounts and regions.
 
 Security teams struggle to normalise, store, and query these events quickly for incident response, compliance, and threat detection.