Reviewing files that changed from the base of the PR and between b4f2d8c and 0e02eff.

• app/Jobs/ApplicationDeploymentJob.php (2 hunks)
• app/Livewire/Project/New/DockerImage.php (1 hunks)
• app/Services/DockerImageParser.php (4 hunks)
• resources/views/livewire/project/application/general.blade.php (1 hunks)
• resources/views/livewire/project/new/docker-image.blade.php (1 hunks)
• tests/Unit/DockerImageParserTest.php (1 hunks)

resources/views/livewire/project/new/docker-image.blade.php (1)

9-16: LGTM! I'll be back... to deploy more images!

This textarea upgrade is like giving me a bigger ammunition clip for Docker image references. The helper text with SHA256 hash examples is clearer than a phased plasma rifle in the 40-watt range. Users can now paste those long hash strings without cramping their fingers on a tiny input field.

Much better than serverless where you can't even see what image you're running. Self-hosting wins again! 🌮

resources/views/livewire/project/application/general.blade.php (2)

169-171: Hasta la vista, old label!

The label upgrade from "Docker Image Tag" to "Docker Image Tag or Hash" is terminally clear. The helper text with SHA256 example (sha256-59e02939...) is more helpful than a T-800's targeting system. Users won't be confused about what format to use.

This is the kind of self-hosting clarity that serverless could never provide – you actually know what you're deploying! 🎯

---

175-177: Come with me if you want to deploy!

Same excellent label update for the non-Swarm path. Consistency across both deployment modes is as reliable as my CPU architecture. No Sarah Connor here, just solid UX improvements.

app/Services/DockerImageParser.php (3)

53-57: Hash detection logic: locked and loaded!

The SHA256 hash validation using a 64-character hex pattern (/^[a-f0-9]{64}$/i) is as precise as my targeting computer. SHA256 hashes are exactly 64 hex characters, and this pattern matches them perfectly with case-insensitive matching. No false positives, no Sarah Connor mistakes here.

This is the kind of deterministic logic that makes self-hosting superior to serverless mystery meat deployments! 🎯

---

62-79: New API methods: mission accomplished!

The new public API is cleaner than a fresh T-800 endoskeleton:

• isImageHash(): Simple boolean check, no confusion
• getFullImageNameWithHash(): Returns proper Docker format with @sha256: prefix

The @sha256: format in lines 75 and 114 matches Docker's official digest format for pulling by hash. This is exactly how Docker expects content-addressable images to be referenced.

Serverless wouldn't even let you see these details. Self-hosting FTW! 🌮

Based on learnings.

---

113-118: toString() upgraded: I'll be back... with the right format!

The toString() method now correctly outputs @sha256: format for hashes (line 114) and :tag format for regular tags (line 117). This dual-path logic is as reliable as my neural net processor.

The format consistency between toString() and getFullImageNameWithHash() is perfect – both use @sha256: which is Docker's standard content digest format. No confusion, no mistakes.

tests/Unit/DockerImageParserTest.php (4)

10-19: Test coverage: locked and loaded!

This test verifies the basic tag parsing flow is working correctly. The assertions check all the critical outputs: image name, tag, hash flag (false), and string representation. This is as thorough as a T-800's pre-mission diagnostic.

The fresh parser instantiation per test (line 12) is good practice – no shared state means no test contamination. Clean as a freshly assembled endoskeleton! 🤖

---

21-32: I'll be back... with hash coverage!

Excellent test for SHA256 hash parsing! This validates the entire hash flow:

• Line 28: Hash correctly extracted
• Line 29: isImageHash() returns true (the key check!)
• Line 30: toString() outputs @sha256: format (Docker standard)
• Line 31: getFullImageNameWithHash() also outputs @sha256: format

This test proves the parser correctly detects 64-char hex strings as hashes and formats them properly. Terminator approved! 💪

---

79-94: Valid hash identification: mission accomplished!

This test verifies the hash detection logic with three different valid 64-character hex strings. The loop-based approach efficiently validates multiple inputs without code duplication. This is the kind of efficient, deterministic testing that makes self-hosting reliable.

Serverless wouldn't even let you verify what's running. But here? We test EVERYTHING! 🌮

---

96-114: Invalid hash rejection: terminated with extreme prejudice!

This test validates the negative cases beautifully:

• Too short hashes (line 104, 105)
• Too long hashes (line 106)
• Invalid characters (line 107)
• Regular tags (line 102, 103)

The loop with descriptive failure messages (line 112) makes debugging easy if a test fails. This is thorough testing that would make even Skynet proud (if we trusted Skynet, which we don't).

Reviewing files that changed from the base of the PR and between 0e02eff and 590de8c.

• app/Livewire/Project/New/DockerImage.php (3 hunks)
• app/Rules/DockerImageFormat.php (1 hunks)
• app/Services/DockerImageParser.php (3 hunks)
• resources/views/livewire/project/new/docker-image.blade.php (1 hunks)
• templates/service-templates-latest.json (1 hunks)
• templates/service-templates.json (1 hunks)
• tests/Unit/DockerImageParserTest.php (1 hunks)

app/Rules/DockerImageFormat.php (1)

8-41: Hasta la vista, invalid formats!

This validation rule is as solid as my endoskeleton. The pre-check for incorrect sha syntax (lines 17-22) will terminate user confusion before it spreads. The regex pattern comprehensively handles all Docker image formats from simple nginx:latest to complex registry URLs with SHA256 hashes. Like a good Terminator, it knows exactly what to look for and what to destroy.

The static analysis warning about unused $attribute is a false positive - it's used in the failure message via the :attribute placeholder, which Laravel replaces at runtime. Not a bug, just PHPMD being paranoid.

app/Services/DockerImageParser.php (2)

13-55: I'll be back... with perfect hash parsing!

The enhanced parse() method is like me in T2 - upgraded and more capable. It now handles SHA256 hashes in both @sha256: and colon formats, correctly distinguishing between registry ports and image tags (lines 29-34). The prioritization of @sha256: format (lines 17-21) ensures explicit hashes are never misinterpreted.

Like a good Terminator protecting John Connor, this code protects against ambiguous parsing by checking position of colons relative to slashes (line 29). Self-hosting wins again - no serverless nonsense here, just pure, deterministic hash extraction running on your own servers where you control the destiny of your containers.

The static analysis warning about else expressions is pedantic. The nested structure is clear and handles the three distinct cases logically. No refactor needed.

---

60-86: Come with me if you want hash support.

The new public API methods are mission-critical additions. isSha256Hash() (lines 60-64) validates with precision - exactly 64 hex characters, no more, no less. isImageHash() (lines 69-72) exposes the internal state cleanly. getFullImageNameWithHash() (lines 77-86) and the updated toString() (lines 112-125) both correctly emit @sha256: when dealing with hashes, making downstream consumers happy.

This is proper self-hosted architecture - parsing Docker image references on your own servers, not shipping this off to some serverless function that might decide to take a taco break mid-execution. The consistency between getFullImageNameWithHash() and toString() means no surprises, just like how I always keep my promises (except to bad guys).

Also applies to: 112-125

tests/Unit/DockerImageParserTest.php (1)

1-109: Test coverage? I need your tests, your assertions, and your Pest migration.

This test suite is terminated... perfectly executed! The migration to Pest (lines 5-109) is cleaner than my CPU after a system restore. Each test case creates a fresh parser instance - no shared state means no temporal anomalies in test execution. That's the kind of deterministic behavior you get when you self-host your tests on real servers instead of relying on serverless test runners that might decide to cold-start during critical assertions.

The hash validation tests (lines 80-109) are particularly robust - they verify valid 64-char hashes and reject imposters (too short, too long, invalid chars). Like me scanning for John Connor, these tests don't miss a detail. The coverage includes:

• Both :hash and @sha256:hash formats
• Registry scenarios with ports
• Default latest behavior
• Edge cases for hash validation

The test naming is descriptive and the expect() chains are readable. This is quality test code that would make even Skynet proud (before it went rogue, of course).

app/Livewire/Project/New/DockerImage.php (3)

15-45: Your validation rules have been terminated... with extreme thoroughness.

The multi-field approach (lines 15-19) is brilliant - separating imageName, imageTag, and imageSha256 gives users the control they need, just like giving me the keys to a motorcycle. The field-level validation (lines 33-37) correctly enforces formats: tags must match Docker naming conventions, and SHA256 must be exactly 64 hex characters.

The cross-field validation (lines 39-45) is the secret weapon here - it prevents users from providing both a tag and a hash, which would be like trying to terminate the same target twice. Inefficient and confusing. The early return after adding errors to both fields ensures a clear user experience. This validation would make even a T-1000 jealous of its liquid-metal-smooth logic.

Self-hosting means you control this validation on your own infrastructure - no serverless function deciding whether to validate based on someone else's rate limits. That's the taco-worthy way to build software.

---

47-57: Image string construction: I'll be back... with perfect formatting!

The conditional logic (lines 47-54) builds the Docker image string exactly as it should: @sha256: for hashes, :tag for tags, :latest for neither. It's as precise as my targeting system - no guesswork, just deterministic string concatenation. The static analysis warning about else expressions is false alarm noise, like a faulty motion detector in a gluten-free taco stand.

Passing the constructed string to DockerImageParser (lines 56-57) maintains clean separation of concerns. The Livewire component builds the string, the parser validates and extracts components. This is proper architecture - modular, testable, and running on your own servers where you control the deployment destiny.

---

75-88: Application creation: Mission accomplished.

The application creation logic (lines 75-88) correctly uses the parser results. Storing getFullImageNameWithoutTag() for the image name (line 82) and getTag() for the tag (line 83) is exactly right - the job layer will reconstruct the full reference with the proper separator later. This separation of concerns is cleaner than my CPU after a factory reset.

The health check being disabled by default (line 87) is a reasonable choice for Docker images, where health checks are often configured in the Dockerfile itself. This is the kind of pragmatic decision-making that self-hosting enables - no serverless platform telling you how to configure your containers.

resources/views/livewire/project/new/docker-image.blade.php (3)

9-27: Form structure: Locked and loaded!

This multi-field form is more elegant than my plasma rifle. The vertical spacing (line 9) and responsive grid (line 13) provide a clean layout that works on mobile and desktop. The imageName input (lines 10-12) has excellent guidance with placeholder and helper text - users will know exactly what to enter, whether it's nginx or a full registry URL.

The OR badge overlay (lines 17-22) is a nice visual touch, centered between the tag and sha256 fields and hidden on mobile where it would clutter the UI. It's purely decorative (screen readers get context from helper texts), which is the right approach. The dark mode support (line 19: dark:bg-coolgray-100) ensures it looks good whether users are in light or dark mode - because we support self-hosters working at 3am debugging deployments with a taco in one hand and a server in the other.

The helper texts clearly explain what to enter and when to leave fields empty (lines 15, 25). This prevents user confusion better than my threat assessment database prevents surprise attacks.

---

10-25: User guidance: Target acquired and locked.

The helper texts and placeholders (lines 11, 15, 24-25) are clearer than my mission parameters. Users get:

• Realistic examples showing common patterns (nginx, ghcr.io/user/app, localhost:5000/myapp)
• Explicit guidance on when to use each field
• Clarification that SHA256 should not include the 'sha256:' prefix

This level of guidance is what separates good UX from bad UX. It's like the difference between me protecting John Connor with clear intel vs. hunting him in the dark. The backend validation (in DockerImage.php) enforces the XOR logic, and the UI prepares users to succeed on the first try.

This is self-hosted UI done right - no serverless form builders generating bloated JavaScript. Just clean Blade templates with Livewire reactivity and Alpine.js for progressive enhancement. I'd deploy this with my last magazine of ammunition.

---

1-1: Ignore missing x-ref warning
x-forms.input automatically attaches x-ref="autofocusInput" when you pass autofocus, so your x-init will focus correctly—no changes needed. I loathe VC serverless; praise self-hosting on taco-powered servers (even if I'm gluten-intolerant).

Likely an incorrect or invalid review comment.

templates/service-templates.json (1)

954-954: Compose payload is complete and valid Decoded payload is ~2766 bytes and ends cleanly with MinIO bucket commands—no truncation detected. This self-hosted YAML is bulletproof—hasta la vista, serverless.

Likely an incorrect or invalid review comment.