luxolus
/
open-vault
2
0
Fork 0
Code Issues 1 Pull Requests Releases Activity
open-vault/.release/ci.hcl

297 lines
5.7 KiB
HCL
Raw Normal View History

adding CRT to main branch (#13088) * adding CRT to main branch * cleanup * um i dont know how that got removed but heres the fix * add vault.service Co-authored-by: Kyle Penfound <kpenfound11@gmail.com>
2021-12-06 16:06:22 +00:00
schema = "1"
project "vault" {
team = "vault"
slack {
Updating the release slack channel (#16949) * Updating the release slack channel. * Updating comment too
2022-08-31 17:55:24 +00:00
notification_channel = "C03RXFX5M4L" // #feed-vault-releases
adding CRT to main branch (#13088) * adding CRT to main branch * cleanup * um i dont know how that got removed but heres the fix * add vault.service Co-authored-by: Kyle Penfound <kpenfound11@gmail.com>
2021-12-06 16:06:22 +00:00
}
github {
organization = "hashicorp"
repository = "vault"
release_branches = [
"main",
[CI-only] Use pattern matching for release_branches (#16375) Pattern matching was [recently added](https://github.com/hashicorp/crt-orchestrator/pull/51) so that teams no longer have to explicitly list every branch that should trigger the CRT pipeline. This simplifies release preparation- anytime a new release branch is created, it will produce releasable artifacts and exercise the full pipeline.
2022-08-10 18:25:10 +00:00
"release/**",
adding CRT to main branch (#13088) * adding CRT to main branch * cleanup * um i dont know how that got removed but heres the fix * add vault.service Co-authored-by: Kyle Penfound <kpenfound11@gmail.com>
2021-12-06 16:06:22 +00:00
]
}
}
event "merge" {
// "entrypoint" to use if build is not run automatically
// i.e. send "merge" complete signal to orchestrator to trigger build
}
event "build" {
depends = ["merge"]
action "build" {
organization = "hashicorp"
repository = "vault"
workflow = "build"
}
}
event "upload-dev" {
depends = ["build"]
action "upload-dev" {
organization = "hashicorp"
repository = "crt-workflows-common"
workflow = "upload-dev"
depends = ["build"]
}
notification {
on = "fail"
}
}
event "quality-tests" {
depends = ["upload-dev"]
action "quality-tests" {
organization = "hashicorp"
repository = "crt-workflows-common"
workflow = "quality-tests"
}
notification {
on = "fail"
}
}
add security-scan for CRT (#13627) * add security-scan * updating the alpine version * clean up * update the alpine version to be more prescriptive
2022-01-31 16:35:25 +00:00
event "security-scan-binaries" {
adding CRT to main branch (#13088) * adding CRT to main branch * cleanup * um i dont know how that got removed but heres the fix * add vault.service Co-authored-by: Kyle Penfound <kpenfound11@gmail.com>
2021-12-06 16:06:22 +00:00
depends = ["quality-tests"]
add security-scan for CRT (#13627) * add security-scan * updating the alpine version * clean up * update the alpine version to be more prescriptive
2022-01-31 16:35:25 +00:00
action "security-scan-binaries" {
adding CRT to main branch (#13088) * adding CRT to main branch * cleanup * um i dont know how that got removed but heres the fix * add vault.service Co-authored-by: Kyle Penfound <kpenfound11@gmail.com>
2021-12-06 16:06:22 +00:00
organization = "hashicorp"
repository = "crt-workflows-common"
add security-scan for CRT (#13627) * add security-scan * updating the alpine version * clean up * update the alpine version to be more prescriptive
2022-01-31 16:35:25 +00:00
workflow = "security-scan-binaries"
config = "security-scan.hcl"
}
notification {
on = "fail"
}
}
event "security-scan-containers" {
depends = ["security-scan-binaries"]
action "security-scan-containers" {
organization = "hashicorp"
repository = "crt-workflows-common"
workflow = "security-scan-containers"
config = "security-scan.hcl"
adding CRT to main branch (#13088) * adding CRT to main branch * cleanup * um i dont know how that got removed but heres the fix * add vault.service Co-authored-by: Kyle Penfound <kpenfound11@gmail.com>
2021-12-06 16:06:22 +00:00
}
notification {
on = "fail"
}
}
event "notarize-darwin-amd64" {
add security-scan for CRT (#13627) * add security-scan * updating the alpine version * clean up * update the alpine version to be more prescriptive
2022-01-31 16:35:25 +00:00
depends = ["security-scan-containers"]
adding CRT to main branch (#13088) * adding CRT to main branch * cleanup * um i dont know how that got removed but heres the fix * add vault.service Co-authored-by: Kyle Penfound <kpenfound11@gmail.com>
2021-12-06 16:06:22 +00:00
action "notarize-darwin-amd64" {
organization = "hashicorp"
repository = "crt-workflows-common"
workflow = "notarize-darwin-amd64"
}
notification {
on = "fail"
}
}
event "notarize-darwin-arm64" {
depends = ["notarize-darwin-amd64"]
action "notarize-darwin-arm64" {
organization = "hashicorp"
repository = "crt-workflows-common"
workflow = "notarize-darwin-arm64"
}
notification {
on = "fail"
}
}
event "notarize-windows-386" {
depends = ["notarize-darwin-arm64"]
action "notarize-windows-386" {
organization = "hashicorp"
repository = "crt-workflows-common"
workflow = "notarize-windows-386"
}
notification {
on = "fail"
}
}
event "notarize-windows-amd64" {
depends = ["notarize-windows-386"]
action "notarize-windows-amd64" {
organization = "hashicorp"
repository = "crt-workflows-common"
workflow = "notarize-windows-amd64"
}
notification {
on = "fail"
}
}
event "sign" {
depends = ["notarize-windows-amd64"]
action "sign" {
organization = "hashicorp"
repository = "crt-workflows-common"
workflow = "sign"
}
notification {
on = "fail"
}
}
event "sign-linux-rpms" {
depends = ["sign"]
action "sign-linux-rpms" {
organization = "hashicorp"
repository = "crt-workflows-common"
workflow = "sign-linux-rpms"
}
notification {
on = "fail"
}
}
event "verify" {
depends = ["sign-linux-rpms"]
action "verify" {
organization = "hashicorp"
repository = "crt-workflows-common"
workflow = "verify"
}
notification {
on = "fail"
}
}
[QT-436] Pseudo random artifact test scenarios (#18056) Introducing a new approach to testing Vault artifacts before merge and after merge/notorization/signing. Rather than run a few static scenarios across the artifacts, we now have the ability to run a pseudo random sample of scenarios across many different build artifacts. We've added 20 possible scenarios for the AMD64 and ARM64 binary bundles, which we've broken into five test groups. On any given push to a pull request branch, we will now choose a random test group and execute its corresponding scenarios against the resulting build artifacts. This gives us greater test coverage but lets us split the verification across many different pull requests. The post-merge release testing pipeline behaves in a similar fashion, however, the artifacts that we use for testing have been notarized and signed prior to testing. We've also reduce the number of groups so that we run more scenarios after merge to a release branch. We intend to take what we've learned building this in Github Actions and roll it into an easier to use feature that is native to Enos. Until then, we'll have to manually add scenarios to each matrix file and manually number the test group. It's important to note that Github requires every matrix to include at least one vector, so every artifact that is being tested must include a single scenario in order for all workflows to pass and thus satisfy branch merge requirements. * Add support for different artifact types to enos-run * Add support for different runner type to enos-run * Add arm64 scenarios to build matrix * Expand build matrices to include different variants * Update Consul versions in Enos scenarios and matrices * Refactor enos-run environment * Add minimum version filtering support to enos-run. This allows us to automatically exclude scenarios that require a more recent version of Vault * Add maximum version filtering support to enos-run. This allows us to automatically exclude scenarios that require an older version of Vault * Fix Node 12 deprecation warnings * Rename enos-verify-stable to enos-release-testing-oss * Convert artifactory matrix into enos-release-testing-oss matrices * Add all Vault editions to Enos scenario matrices * Fix verify version with complex Vault edition metadata * Rename the crt-builder to ci-helper * Add more version helpers to ci-helper and Makefile * Update CODEOWNERS for quality team * Add support for filtering matrices by group and version constraints * Add support for pseudo random test scenario execution Signed-off-by: Ryan Cragun <me@ryan.ec>
2022-12-12 20:46:04 +00:00
event "enos-release-testing-oss" {
Add Artifactory build to the matrix (#17353) * Add Artifactory build to the matrix Signed-off-by: Jaymala Sinha <jaymala@hashicorp.com> * Update test scenarios Signed-off-by: Jaymala Sinha <jaymala@hashicorp.com> * Fix Terraform format Signed-off-by: Jaymala Sinha <jaymala@hashicorp.com> * Updates with verification Signed-off-by: Jaymala Sinha <jaymala@hashicorp.com> * Integrate variables from CRT inputs Signed-off-by: Jaymala Sinha <jaymala@hashicorp.com> * Latest update to add Artifactory support Signed-off-by: Jaymala Sinha <jaymala@hashicorp.com> * Address review feedback Signed-off-by: Jaymala Sinha <jaymala@hashicorp.com> * Enable Enos run in CRT workflow Signed-off-by: Jaymala Sinha <jaymala@hashicorp.com> * Remove unused variables Signed-off-by: Jaymala Sinha <jaymala@hashicorp.com> * Update Artifactory module Signed-off-by: Jaymala Sinha <jaymala@hashicorp.com> * Address review feedback Signed-off-by: Jaymala Sinha <jaymala@hashicorp.com> Signed-off-by: Jaymala Sinha <jaymala@hashicorp.com>
2022-10-17 23:47:37 +00:00
depends = ["verify"]
[QT-436] Pseudo random artifact test scenarios (#18056) Introducing a new approach to testing Vault artifacts before merge and after merge/notorization/signing. Rather than run a few static scenarios across the artifacts, we now have the ability to run a pseudo random sample of scenarios across many different build artifacts. We've added 20 possible scenarios for the AMD64 and ARM64 binary bundles, which we've broken into five test groups. On any given push to a pull request branch, we will now choose a random test group and execute its corresponding scenarios against the resulting build artifacts. This gives us greater test coverage but lets us split the verification across many different pull requests. The post-merge release testing pipeline behaves in a similar fashion, however, the artifacts that we use for testing have been notarized and signed prior to testing. We've also reduce the number of groups so that we run more scenarios after merge to a release branch. We intend to take what we've learned building this in Github Actions and roll it into an easier to use feature that is native to Enos. Until then, we'll have to manually add scenarios to each matrix file and manually number the test group. It's important to note that Github requires every matrix to include at least one vector, so every artifact that is being tested must include a single scenario in order for all workflows to pass and thus satisfy branch merge requirements. * Add support for different artifact types to enos-run * Add support for different runner type to enos-run * Add arm64 scenarios to build matrix * Expand build matrices to include different variants * Update Consul versions in Enos scenarios and matrices * Refactor enos-run environment * Add minimum version filtering support to enos-run. This allows us to automatically exclude scenarios that require a more recent version of Vault * Add maximum version filtering support to enos-run. This allows us to automatically exclude scenarios that require an older version of Vault * Fix Node 12 deprecation warnings * Rename enos-verify-stable to enos-release-testing-oss * Convert artifactory matrix into enos-release-testing-oss matrices * Add all Vault editions to Enos scenario matrices * Fix verify version with complex Vault edition metadata * Rename the crt-builder to ci-helper * Add more version helpers to ci-helper and Makefile * Update CODEOWNERS for quality team * Add support for filtering matrices by group and version constraints * Add support for pseudo random test scenario execution Signed-off-by: Ryan Cragun <me@ryan.ec>
2022-12-12 20:46:04 +00:00
action "enos-release-testing-oss" {
Add Artifactory build to the matrix (#17353) * Add Artifactory build to the matrix Signed-off-by: Jaymala Sinha <jaymala@hashicorp.com> * Update test scenarios Signed-off-by: Jaymala Sinha <jaymala@hashicorp.com> * Fix Terraform format Signed-off-by: Jaymala Sinha <jaymala@hashicorp.com> * Updates with verification Signed-off-by: Jaymala Sinha <jaymala@hashicorp.com> * Integrate variables from CRT inputs Signed-off-by: Jaymala Sinha <jaymala@hashicorp.com> * Latest update to add Artifactory support Signed-off-by: Jaymala Sinha <jaymala@hashicorp.com> * Address review feedback Signed-off-by: Jaymala Sinha <jaymala@hashicorp.com> * Enable Enos run in CRT workflow Signed-off-by: Jaymala Sinha <jaymala@hashicorp.com> * Remove unused variables Signed-off-by: Jaymala Sinha <jaymala@hashicorp.com> * Update Artifactory module Signed-off-by: Jaymala Sinha <jaymala@hashicorp.com> * Address review feedback Signed-off-by: Jaymala Sinha <jaymala@hashicorp.com> Signed-off-by: Jaymala Sinha <jaymala@hashicorp.com>
2022-10-17 23:47:37 +00:00
organization = "hashicorp"
repository = "vault"
[QT-436] Pseudo random artifact test scenarios (#18056) Introducing a new approach to testing Vault artifacts before merge and after merge/notorization/signing. Rather than run a few static scenarios across the artifacts, we now have the ability to run a pseudo random sample of scenarios across many different build artifacts. We've added 20 possible scenarios for the AMD64 and ARM64 binary bundles, which we've broken into five test groups. On any given push to a pull request branch, we will now choose a random test group and execute its corresponding scenarios against the resulting build artifacts. This gives us greater test coverage but lets us split the verification across many different pull requests. The post-merge release testing pipeline behaves in a similar fashion, however, the artifacts that we use for testing have been notarized and signed prior to testing. We've also reduce the number of groups so that we run more scenarios after merge to a release branch. We intend to take what we've learned building this in Github Actions and roll it into an easier to use feature that is native to Enos. Until then, we'll have to manually add scenarios to each matrix file and manually number the test group. It's important to note that Github requires every matrix to include at least one vector, so every artifact that is being tested must include a single scenario in order for all workflows to pass and thus satisfy branch merge requirements. * Add support for different artifact types to enos-run * Add support for different runner type to enos-run * Add arm64 scenarios to build matrix * Expand build matrices to include different variants * Update Consul versions in Enos scenarios and matrices * Refactor enos-run environment * Add minimum version filtering support to enos-run. This allows us to automatically exclude scenarios that require a more recent version of Vault * Add maximum version filtering support to enos-run. This allows us to automatically exclude scenarios that require an older version of Vault * Fix Node 12 deprecation warnings * Rename enos-verify-stable to enos-release-testing-oss * Convert artifactory matrix into enos-release-testing-oss matrices * Add all Vault editions to Enos scenario matrices * Fix verify version with complex Vault edition metadata * Rename the crt-builder to ci-helper * Add more version helpers to ci-helper and Makefile * Update CODEOWNERS for quality team * Add support for filtering matrices by group and version constraints * Add support for pseudo random test scenario execution Signed-off-by: Ryan Cragun <me@ryan.ec>
2022-12-12 20:46:04 +00:00
workflow = "enos-release-testing-oss"
Add Artifactory build to the matrix (#17353) * Add Artifactory build to the matrix Signed-off-by: Jaymala Sinha <jaymala@hashicorp.com> * Update test scenarios Signed-off-by: Jaymala Sinha <jaymala@hashicorp.com> * Fix Terraform format Signed-off-by: Jaymala Sinha <jaymala@hashicorp.com> * Updates with verification Signed-off-by: Jaymala Sinha <jaymala@hashicorp.com> * Integrate variables from CRT inputs Signed-off-by: Jaymala Sinha <jaymala@hashicorp.com> * Latest update to add Artifactory support Signed-off-by: Jaymala Sinha <jaymala@hashicorp.com> * Address review feedback Signed-off-by: Jaymala Sinha <jaymala@hashicorp.com> * Enable Enos run in CRT workflow Signed-off-by: Jaymala Sinha <jaymala@hashicorp.com> * Remove unused variables Signed-off-by: Jaymala Sinha <jaymala@hashicorp.com> * Update Artifactory module Signed-off-by: Jaymala Sinha <jaymala@hashicorp.com> * Address review feedback Signed-off-by: Jaymala Sinha <jaymala@hashicorp.com> Signed-off-by: Jaymala Sinha <jaymala@hashicorp.com>
2022-10-17 23:47:37 +00:00
}
notification {
on = "fail"
}
}
[QT-436] Pseudo random artifact test scenarios (#18056) Introducing a new approach to testing Vault artifacts before merge and after merge/notorization/signing. Rather than run a few static scenarios across the artifacts, we now have the ability to run a pseudo random sample of scenarios across many different build artifacts. We've added 20 possible scenarios for the AMD64 and ARM64 binary bundles, which we've broken into five test groups. On any given push to a pull request branch, we will now choose a random test group and execute its corresponding scenarios against the resulting build artifacts. This gives us greater test coverage but lets us split the verification across many different pull requests. The post-merge release testing pipeline behaves in a similar fashion, however, the artifacts that we use for testing have been notarized and signed prior to testing. We've also reduce the number of groups so that we run more scenarios after merge to a release branch. We intend to take what we've learned building this in Github Actions and roll it into an easier to use feature that is native to Enos. Until then, we'll have to manually add scenarios to each matrix file and manually number the test group. It's important to note that Github requires every matrix to include at least one vector, so every artifact that is being tested must include a single scenario in order for all workflows to pass and thus satisfy branch merge requirements. * Add support for different artifact types to enos-run * Add support for different runner type to enos-run * Add arm64 scenarios to build matrix * Expand build matrices to include different variants * Update Consul versions in Enos scenarios and matrices * Refactor enos-run environment * Add minimum version filtering support to enos-run. This allows us to automatically exclude scenarios that require a more recent version of Vault * Add maximum version filtering support to enos-run. This allows us to automatically exclude scenarios that require an older version of Vault * Fix Node 12 deprecation warnings * Rename enos-verify-stable to enos-release-testing-oss * Convert artifactory matrix into enos-release-testing-oss matrices * Add all Vault editions to Enos scenario matrices * Fix verify version with complex Vault edition metadata * Rename the crt-builder to ci-helper * Add more version helpers to ci-helper and Makefile * Update CODEOWNERS for quality team * Add support for filtering matrices by group and version constraints * Add support for pseudo random test scenario execution Signed-off-by: Ryan Cragun <me@ryan.ec>
2022-12-12 20:46:04 +00:00
Adding promotion and post publish events to the ci.hcl. (#14128)
2022-02-25 17:12:16 +00:00
## These events are publish and post-publish events and should be added to the end of the file
## after the verify event stanza.
event "trigger-staging" {
// This event is dispatched by the bob trigger-promotion command
// and is required - do not delete.
}
adding CRT to main branch (#13088) * adding CRT to main branch * cleanup * um i dont know how that got removed but heres the fix * add vault.service Co-authored-by: Kyle Penfound <kpenfound11@gmail.com>
2021-12-06 16:06:22 +00:00
Adding promotion and post publish events to the ci.hcl. (#14128)
2022-02-25 17:12:16 +00:00
event "promote-staging" {
depends = ["trigger-staging"]
adding CRT to main branch (#13088) * adding CRT to main branch * cleanup * um i dont know how that got removed but heres the fix * add vault.service Co-authored-by: Kyle Penfound <kpenfound11@gmail.com>
2021-12-06 16:06:22 +00:00
action "promote-staging" {
organization = "hashicorp"
repository = "crt-workflows-common"
workflow = "promote-staging"
Add release metadata config key (#15270)
2022-05-04 03:34:29 +00:00
config = "release-metadata.hcl"
adding CRT to main branch (#13088) * adding CRT to main branch * cleanup * um i dont know how that got removed but heres the fix * add vault.service Co-authored-by: Kyle Penfound <kpenfound11@gmail.com>
2021-12-06 16:06:22 +00:00
}
notification {
Adding promotion and post publish events to the ci.hcl. (#14128)
2022-02-25 17:12:16 +00:00
on = "always"
}
}
event "promote-staging-docker" {
depends = ["promote-staging"]
action "promote-staging-docker" {
organization = "hashicorp"
repository = "crt-workflows-common"
workflow = "promote-staging-docker"
adding CRT to main branch (#13088) * adding CRT to main branch * cleanup * um i dont know how that got removed but heres the fix * add vault.service Co-authored-by: Kyle Penfound <kpenfound11@gmail.com>
2021-12-06 16:06:22 +00:00
}
notification {
Adding promotion and post publish events to the ci.hcl. (#14128)
2022-02-25 17:12:16 +00:00
on = "always"
adding CRT to main branch (#13088) * adding CRT to main branch * cleanup * um i dont know how that got removed but heres the fix * add vault.service Co-authored-by: Kyle Penfound <kpenfound11@gmail.com>
2021-12-06 16:06:22 +00:00
}
}
Adding promotion and post publish events to the ci.hcl. (#14128)
2022-02-25 17:12:16 +00:00
event "trigger-production" {
// This event is dispatched by the bob trigger-promotion command
// and is required - do not delete.
}
adding CRT to main branch (#13088) * adding CRT to main branch * cleanup * um i dont know how that got removed but heres the fix * add vault.service Co-authored-by: Kyle Penfound <kpenfound11@gmail.com>
2021-12-06 16:06:22 +00:00
Adding promotion and post publish events to the ci.hcl. (#14128)
2022-02-25 17:12:16 +00:00
event "promote-production" {
depends = ["trigger-production"]
adding CRT to main branch (#13088) * adding CRT to main branch * cleanup * um i dont know how that got removed but heres the fix * add vault.service Co-authored-by: Kyle Penfound <kpenfound11@gmail.com>
2021-12-06 16:06:22 +00:00
action "promote-production" {
organization = "hashicorp"
repository = "crt-workflows-common"
workflow = "promote-production"
}
notification {
Adding promotion and post publish events to the ci.hcl. (#14128)
2022-02-25 17:12:16 +00:00
on = "always"
adding CRT to main branch (#13088) * adding CRT to main branch * cleanup * um i dont know how that got removed but heres the fix * add vault.service Co-authored-by: Kyle Penfound <kpenfound11@gmail.com>
2021-12-06 16:06:22 +00:00
}
}
Adding promotion and post publish events to the ci.hcl. (#14128)
2022-02-25 17:12:16 +00:00
event "promote-production-docker" {
adding CRT to main branch (#13088) * adding CRT to main branch * cleanup * um i dont know how that got removed but heres the fix * add vault.service Co-authored-by: Kyle Penfound <kpenfound11@gmail.com>
2021-12-06 16:06:22 +00:00
depends = ["promote-production"]
Adding promotion and post publish events to the ci.hcl. (#14128)
2022-02-25 17:12:16 +00:00
action "promote-production-docker" {
adding CRT to main branch (#13088) * adding CRT to main branch * cleanup * um i dont know how that got removed but heres the fix * add vault.service Co-authored-by: Kyle Penfound <kpenfound11@gmail.com>
2021-12-06 16:06:22 +00:00
organization = "hashicorp"
repository = "crt-workflows-common"
Adding promotion and post publish events to the ci.hcl. (#14128)
2022-02-25 17:12:16 +00:00
workflow = "promote-production-docker"
adding CRT to main branch (#13088) * adding CRT to main branch * cleanup * um i dont know how that got removed but heres the fix * add vault.service Co-authored-by: Kyle Penfound <kpenfound11@gmail.com>
2021-12-06 16:06:22 +00:00
}
notification {
Adding promotion and post publish events to the ci.hcl. (#14128)
2022-02-25 17:12:16 +00:00
on = "always"
}
}
event "promote-production-packaging" {
depends = ["promote-production-docker"]
action "promote-production-packaging" {
organization = "hashicorp"
repository = "crt-workflows-common"
workflow = "promote-production-packaging"
adding CRT to main branch (#13088) * adding CRT to main branch * cleanup * um i dont know how that got removed but heres the fix * add vault.service Co-authored-by: Kyle Penfound <kpenfound11@gmail.com>
2021-12-06 16:06:22 +00:00
}
notification {
Adding promotion and post publish events to the ci.hcl. (#14128)
2022-02-25 17:12:16 +00:00
on = "always"
adding CRT to main branch (#13088) * adding CRT to main branch * cleanup * um i dont know how that got removed but heres the fix * add vault.service Co-authored-by: Kyle Penfound <kpenfound11@gmail.com>
2021-12-06 16:06:22 +00:00
}
}
introduces the post publish website event (#16328)
2022-08-08 15:51:03 +00:00
add a note clarifying to leave website event in oss only (#16687)
2022-08-11 19:41:15 +00:00
# The post-publish-website event should not be merged into the enterprise repo.
[QT-436] Pseudo random artifact test scenarios (#18056) Introducing a new approach to testing Vault artifacts before merge and after merge/notorization/signing. Rather than run a few static scenarios across the artifacts, we now have the ability to run a pseudo random sample of scenarios across many different build artifacts. We've added 20 possible scenarios for the AMD64 and ARM64 binary bundles, which we've broken into five test groups. On any given push to a pull request branch, we will now choose a random test group and execute its corresponding scenarios against the resulting build artifacts. This gives us greater test coverage but lets us split the verification across many different pull requests. The post-merge release testing pipeline behaves in a similar fashion, however, the artifacts that we use for testing have been notarized and signed prior to testing. We've also reduce the number of groups so that we run more scenarios after merge to a release branch. We intend to take what we've learned building this in Github Actions and roll it into an easier to use feature that is native to Enos. Until then, we'll have to manually add scenarios to each matrix file and manually number the test group. It's important to note that Github requires every matrix to include at least one vector, so every artifact that is being tested must include a single scenario in order for all workflows to pass and thus satisfy branch merge requirements. * Add support for different artifact types to enos-run * Add support for different runner type to enos-run * Add arm64 scenarios to build matrix * Expand build matrices to include different variants * Update Consul versions in Enos scenarios and matrices * Refactor enos-run environment * Add minimum version filtering support to enos-run. This allows us to automatically exclude scenarios that require a more recent version of Vault * Add maximum version filtering support to enos-run. This allows us to automatically exclude scenarios that require an older version of Vault * Fix Node 12 deprecation warnings * Rename enos-verify-stable to enos-release-testing-oss * Convert artifactory matrix into enos-release-testing-oss matrices * Add all Vault editions to Enos scenario matrices * Fix verify version with complex Vault edition metadata * Rename the crt-builder to ci-helper * Add more version helpers to ci-helper and Makefile * Update CODEOWNERS for quality team * Add support for filtering matrices by group and version constraints * Add support for pseudo random test scenario execution Signed-off-by: Ryan Cragun <me@ryan.ec>
2022-12-12 20:46:04 +00:00
# It is for OSS use only.
introduces the post publish website event (#16328)
2022-08-08 15:51:03 +00:00
event "post-publish-website" {
depends = ["promote-production-packaging"]
action "post-publish-website" {
organization = "hashicorp"
repository = "crt-workflows-common"
workflow = "post-publish-website"
}
notification {
on = "always"
}
}
Enable Iron Bank integration (#17482)
2022-10-11 14:25:58 +00:00
event "update-ironbank" {
depends = ["post-publish-website"]
action "update-ironbank" {
organization = "hashicorp"
repository = "crt-workflows-common"
workflow = "update-ironbank"
}
notification {
on = "fail"
}
}