diff --git a/.github/workflows/all_solutions.yml b/.github/workflows/all_solutions.yml index 6cfd69d37e..e807dd2852 100644 --- a/.github/workflows/all_solutions.yml +++ b/.github/workflows/all_solutions.yml @@ -776,7 +776,6 @@ jobs: name: deploy-artifacts path: | ${{ github.workspace }}\build\BuildArtifacts - ${{ github.workspace }}\deploy if-no-files-found: error # This job is necessary in order for us to have a branch protection rule for tests with a matrix diff --git a/.github/workflows/deploy_agent.yml b/.github/workflows/deploy_agent.yml index 965a5662f5..16f18bee64 100644 --- a/.github/workflows/deploy_agent.yml +++ b/.github/workflows/deploy_agent.yml @@ -76,13 +76,6 @@ jobs: path: ${{ github.workspace }}/build/BuildArtifacts if-no-files-found: error - # - name: Upload Deploy Tooling Locally - # uses: actions/upload-artifact@a8a3f3ad30e3422c9c7b888a15615d19a852ae32 # v3.1.3 - # with: - # name: deploy-tooling - # path: ${{ github.workspace }}/deploy/ - # if-no-files-found: error - deploy-downloadsite: needs: get-external-artifacts if: ${{ github.event.inputs.downloadsite == 'true' }} @@ -274,12 +267,6 @@ jobs: name: deploy-artifacts path: ${{ github.workspace }}/ - # - name: Download Deploy Tooling - # uses: actions/download-artifact@9bc31d5ccc31df68ecc42ccf4149144866c47d8a # v3.0.2 - # with: - # name: deploy-tooling - # path: ${{ github.workspace }}/deploy - - name: Get GPG Key id: write_gpgkey run: | diff --git a/.github/workflows/post_deploy_agent.yml b/.github/workflows/post_deploy_agent.yml index 0df03cda01..9f5bdb2408 100644 --- a/.github/workflows/post_deploy_agent.yml +++ b/.github/workflows/post_deploy_agent.yml @@ -7,17 +7,17 @@ on: description: 'Agent Version to validate. Needs to match the version from the Release Workflow (all_solutions.yml). Format: X.X.X' required: true type: string - external_call: - type: boolean - default: true - required: false workflow_call: inputs: agent_version: description: 'Agent Version to validate. Needs to match the version from the Release Workflow (all_solutions.yml). Format: X.X.X' required: true type: string - + external_call: + type: boolean + default: true + required: false + permissions: contents: read packages: read @@ -37,7 +37,7 @@ jobs: disable-sudo: false egress-policy: audit - name: Wait for APT to update - if: ${{ github.event.inputs.external_call }} # only wait if this workflow was called by another workflow + if: ${{ github.event.inputs.external_call == 'true' }} # only wait if this workflow was called by another workflow run: | echo "Sleeping 5 minutes to wait for apt to update itself" sleep 300 @@ -76,7 +76,7 @@ jobs: fetch-depth: 0 - name: Wait for YUM to update - if: ${{ github.event.inputs.external_call }} # only wait if this workflow was called by another workflow + if: ${{ github.event.inputs.external_call == 'true' }} # only wait if this workflow was called by another workflow run: | echo "Sleeping 5 minutes to wait for yum to update itself" sleep 300 diff --git a/.github/workflows/publish_release_notes.yml b/.github/workflows/publish_release_notes.yml index c0414d1491..acaa422352 100644 --- a/.github/workflows/publish_release_notes.yml +++ b/.github/workflows/publish_release_notes.yml @@ -31,35 +31,7 @@ env: jobs: - get-external-artifacts: - name: Get and Publish Deploy Artifacts Locally - runs-on: ubuntu-latest - steps: - - name: Harden Runner - uses: step-security/harden-runner@eb238b55efaa70779f274895e782ed17c84f2895 # v2.6.1 - with: - disable-sudo: true - egress-policy: audit - - - name: Download Deploy Artifacts - uses: dawidd6/action-download-artifact@268677152d06ba59fcec7a7f0b5d961b6ccd7e1e # v2.28.0 - with: - github_token: ${{ secrets.GITHUB_TOKEN }} - workflow: all_solutions.yml - run_id: ${{ github.event.inputs.run_id }} - name: deploy-artifacts - path: ${{ github.workspace }} - repo: ${{ github.repository }} - - - name: Upload Deploy Artifacts Locally - uses: actions/upload-artifact@a8a3f3ad30e3422c9c7b888a15615d19a852ae32 # v3.1.3 - with: - name: deploy-artifacts - path: ${{ github.workspace }}/build/BuildArtifacts - if-no-files-found: error - publish-release-notes: - needs: get-external-artifacts name: Create and Publish Release Notes runs-on: ubuntu-latest steps: @@ -74,10 +46,14 @@ jobs: fetch-depth: 0 - name: Download Deploy Artifacts - uses: actions/download-artifact@9bc31d5ccc31df68ecc42ccf4149144866c47d8a # v3.0.2 + uses: dawidd6/action-download-artifact@268677152d06ba59fcec7a7f0b5d961b6ccd7e1e # v2.28.0 with: + github_token: ${{ secrets.GITHUB_TOKEN }} + workflow: all_solutions.yml + run_id: ${{ github.event.inputs.run_id }} name: deploy-artifacts - path: ${{ github.workspace }}/artifacts + path: ${{ github.workspace }}/deploy-artifacts + repo: ${{ github.repository }} - name: Set Docs PR Branch Name run: | @@ -97,7 +73,7 @@ jobs: BUILD_PATH: ${{ github.workspace }}/build/ReleaseNotesBuilder/ReleaseNotesBuilder.csproj RUN_PATH: ${{ github.workspace }}/build/ReleaseNotesBuilder/bin/Release/net7.0/ CHANGELOG: ${{ github.workspace }}/src/Agent/CHANGELOG.md - CHECKSUMS: ${{ github.workspace }}/artifacts/DownloadSite/SHA256/checksums.md + CHECKSUMS: ${{ github.workspace }}/deploy-artifacts/build/BuildArtifacts/DownloadSite/SHA256/checksums.md OUTPUT_PATH: ${{ github.workspace }} - name: Create branch