OSS Inventory and Version Truth

Documentation Map

• Overview

• Quick Start

• Installation

• Configuration

• Operations

• Troubleshooting

• Release Notes

• Compatibility

• Integrations

• Capabilities

• OSS Inventory

• Channel: latest

• Source repo: JaddaHelpifyr/jhf-selvage

OSS Inventory and Version Truth

jhf-selvage is a consumer of Fabric-owned OSS upgrade truth and publishes one repo-owned readback page for upgrade-relevant runtime and CI surfaces.

Scope

• runtime stack images from infra/docker/docker-compose.stack.yml
• CI runner and toolchain declarations from .gitea/workflows/ci.yml
• repo verifier contract from scripts/verify_oss_version_truth.py
• Fabric OSS upgrade contracts from JaddaHelpifyr/helpifyr-fabric

Canonical Fabric Source of Truth

This repository does not own central OSS-upgrade governance truth. It consumes these upstream contracts fail-closed:

• contracts/platform/platform_version_truth.json
• contracts/platform/platform_projection_catalog.json
• contracts/platform/platform_oss_upgrade_governance_v1.json
• contracts/platform/platform_oss_upgrade_compatibility_matrix_v1.json
• contracts/platform/platform_oss_upgrade_evidence_contract_v1.json
• contracts/platform/helpifyr_stack_module_identity_v1.json
• contracts/platform/stack_tool_oss_inventory_directory.json
• docs/contracts/HELPIFYR_PLATFORM_OSS_UPGRADE_GOVERNANCE.md
• docs/contracts/HELPIFYR_STACK_MODULE_IDENTITY.md
• docs/contracts/HELPIFYR_STACK_TOOL_OSS_INVENTORY_DIRECTORY.md

Consumer verifier:

• python scripts/verify_fabric_oss_upgrade_consumer.py

Current Version Truth

Component key	Truth surface	Current value	Pinning mode
runtime.postgres	infra/docker/docker-compose.stack.yml	postgres:15-alpine	exact_tag
runtime.elasticsearch	infra/docker/docker-compose.stack.yml	ghcr.io/alephdata/aleph-elasticsearch:3bb5dbed97cfdb9955324d11e5c623a5c5bbc410	exact_tag
runtime.redis	infra/docker/docker-compose.stack.yml	redis:7-alpine	exact_tag
runtime.rabbitmq	infra/docker/docker-compose.stack.yml	rabbitmq:3.13-alpine	exact_tag
runtime.ingest_file	infra/docker/docker-compose.stack.yml	ghcr.io/alephdata/ingest-file:4.1.2	exact_tag
runtime.aleph	infra/docker/docker-compose.stack.yml	ghcr.io/alephdata/aleph:${ALEPH_TAG:-4.1.7}	default_tag_pin
runtime.aleph_ui	infra/docker/docker-compose.stack.yml	ghcr.io/alephdata/aleph-ui-production:${ALEPH_TAG:-4.1.7}	default_tag_pin
ci.runner_os	.gitea/workflows/ci.yml	ubuntu-24.04	stable_track
ci.python	.gitea/workflows/ci.yml	3.11	minor_channel
ci.action_checkout	.gitea/workflows/ci.yml	actions/checkout@v4	major_tag
ci.action_setup_python	.gitea/workflows/ci.yml	actions/setup-python@v5	major_tag

Policy

• no latest tag in runtime images
• no latest runner declaration in CI
• no empty image tags
• no undocumented drift between this doc and repo version surfaces

Verify Path

python scripts/verify_oss_version_truth.py
python scripts/verify_fabric_oss_upgrade_consumer.py
python -m pytest -q

CI runs both OSS verifiers fail-closed:

• python scripts/verify_oss_version_truth.py
• python scripts/verify_fabric_oss_upgrade_consumer.py

Exceptions

No owner-approved exception for latest exists in this repository.

License: AGPLv3. Helpifyr: https://helpifyr.com