gluestack-nativewind

• [Overview](#overview)
• [Quick Start](#quick-start)
• [Workflows](#workflows)
• [Secrets Configuration](#secrets-configuration)
• [Repository Variables](#repository-variables)
• [External Service Setup](#external-service-setup)
• [Customization](#customization)

The CI/CD system provides:

• Quality Gates: Linting, type checking, formatting, and testing
• Security Scanning: Vulnerability detection, secret scanning, license compliance
• Release Management: Automated versioning, changelogs, and GitHub releases
• Mobile Builds: Expo EAS builds for iOS and Android
• OTA Updates: Expo EAS Update deployments
• Performance Testing: Lighthouse CI for web, k6 load testing
• AI Integration: Claude Code for automated code review and assistance

Minimum Configuration

To get started with basic CI, add these secrets to your repository:

```bash

# No secrets required for basic quality checks (lint, typecheck, build, format)

```

Recommended Configuration

For full functionality, configure the following secrets:

| Secret | Purpose | Required For |

|--------|---------|--------------|

| EXPO_TOKEN | EAS builds and updates | Mobile deployment |

| SENTRY_AUTH_TOKEN | Error tracking | Release monitoring |

| SONAR_TOKEN | Code quality analysis | Security scanning |

| SNYK_TOKEN | Vulnerability scanning | Security scanning |

CI Quality Checks (`ci.yml`)

Triggers: Pull requests, manual dispatch

Runs on every pull request to validate code quality:

• Lint (ESLint)
• Type checking (TypeScript)
• Formatting (Prettier)
• Build verification
• Security scans (when configured)
• Lighthouse CI (web performance)

Configuration:

```yaml

# In ci.yml, modify these inputs:

node_version: '22.21.1'

package_manager: 'bun'

skip_jobs: 'test,test:integration,test:e2e' # Comma-separated list

```

Release and Deploy (`deploy.yml`)

Triggers: Push to main, staging, or dev branches; manual dispatch

Handles the complete release lifecycle:

1. Creates a new release with version bump
2. Generates changelog from commits
3. Triggers EAS build (if app.config.ts changed)
4. Publishes OTA update via EAS Update
5. Creates Sentry release (if configured)

Environment Mapping:

| Branch | Environment | EAS Channel |

|--------|-------------|-------------|

| dev | development | dev |

| staging | staging | staging |

| main | production | production |

EAS Build (`build.yml`)

Triggers: Changes to app.config.ts, manual dispatch, workflow call

Builds native app binaries via Expo Application Services:

• dev: Development preview builds
• staging: Staging builds with auto-submit to TestFlight/Play Console
• production: Production builds with auto-submit

Quality Checks (`quality.yml`)

Type: Reusable workflow

Comprehensive quality validation with 20+ configurable jobs. Called by other workflows.

Skippable Jobs:

```

lint, typecheck, test, test:unit, test:integration, test:e2e,

maestro_e2e, playwright_e2e, format, build, npm_security_scan,

sonarcloud, snyk, secret_scanning, license_compliance

```

Release (`release.yml`)

Type: Reusable workflow

Enterprise-grade release management:

• Version strategies: standard-version, semantic, calendar, custom
• Changelog generation
• GPG signing (optional)
• SBOM generation
• Sentry release creation
• Jira release creation
• Compliance validation (SOC2, ISO27001, HIPAA, PCI-DSS)

Blackout Periods (configurable):

• Production: No weekends, no late nights (10 PM - 6 AM)
• Holiday blackouts: Dec 24 - Jan 2, Jul 3-5, Nov 27-29

Lighthouse CI (`lighthouse.yml`)

Type: Reusable workflow

Web performance budget validation using Google Lighthouse.

Claude Co