2d2e116e1e
* add security-scan * updating the alpine version * clean up * update the alpine version to be more prescriptive
232 lines
4 KiB
HCL
232 lines
4 KiB
HCL
schema = "1"
|
|
|
|
project "vault" {
|
|
team = "vault"
|
|
slack {
|
|
notification_channel = "CRF6FFKEW" // #vault-releases
|
|
}
|
|
github {
|
|
organization = "hashicorp"
|
|
repository = "vault"
|
|
release_branches = [
|
|
"main",
|
|
"release/1.6.x",
|
|
"release/1.7.x",
|
|
"release/1.8.x",
|
|
"release/1.9.x",
|
|
]
|
|
}
|
|
}
|
|
|
|
event "merge" {
|
|
// "entrypoint" to use if build is not run automatically
|
|
// i.e. send "merge" complete signal to orchestrator to trigger build
|
|
}
|
|
|
|
event "build" {
|
|
depends = ["merge"]
|
|
action "build" {
|
|
organization = "hashicorp"
|
|
repository = "vault"
|
|
workflow = "build"
|
|
}
|
|
}
|
|
|
|
event "upload-dev" {
|
|
depends = ["build"]
|
|
action "upload-dev" {
|
|
organization = "hashicorp"
|
|
repository = "crt-workflows-common"
|
|
workflow = "upload-dev"
|
|
depends = ["build"]
|
|
}
|
|
|
|
notification {
|
|
on = "fail"
|
|
}
|
|
}
|
|
|
|
event "quality-tests" {
|
|
depends = ["upload-dev"]
|
|
action "quality-tests" {
|
|
organization = "hashicorp"
|
|
repository = "crt-workflows-common"
|
|
workflow = "quality-tests"
|
|
}
|
|
|
|
notification {
|
|
on = "fail"
|
|
}
|
|
}
|
|
|
|
event "security-scan-binaries" {
|
|
depends = ["quality-tests"]
|
|
action "security-scan-binaries" {
|
|
organization = "hashicorp"
|
|
repository = "crt-workflows-common"
|
|
workflow = "security-scan-binaries"
|
|
config = "security-scan.hcl"
|
|
}
|
|
|
|
notification {
|
|
on = "fail"
|
|
}
|
|
}
|
|
|
|
event "security-scan-containers" {
|
|
depends = ["security-scan-binaries"]
|
|
action "security-scan-containers" {
|
|
organization = "hashicorp"
|
|
repository = "crt-workflows-common"
|
|
workflow = "security-scan-containers"
|
|
config = "security-scan.hcl"
|
|
}
|
|
|
|
notification {
|
|
on = "fail"
|
|
}
|
|
}
|
|
|
|
event "notarize-darwin-amd64" {
|
|
depends = ["security-scan-containers"]
|
|
action "notarize-darwin-amd64" {
|
|
organization = "hashicorp"
|
|
repository = "crt-workflows-common"
|
|
workflow = "notarize-darwin-amd64"
|
|
}
|
|
|
|
notification {
|
|
on = "fail"
|
|
}
|
|
}
|
|
|
|
event "notarize-darwin-arm64" {
|
|
depends = ["notarize-darwin-amd64"]
|
|
action "notarize-darwin-arm64" {
|
|
organization = "hashicorp"
|
|
repository = "crt-workflows-common"
|
|
workflow = "notarize-darwin-arm64"
|
|
}
|
|
|
|
notification {
|
|
on = "fail"
|
|
}
|
|
}
|
|
|
|
event "notarize-windows-386" {
|
|
depends = ["notarize-darwin-arm64"]
|
|
action "notarize-windows-386" {
|
|
organization = "hashicorp"
|
|
repository = "crt-workflows-common"
|
|
workflow = "notarize-windows-386"
|
|
}
|
|
|
|
notification {
|
|
on = "fail"
|
|
}
|
|
}
|
|
|
|
event "notarize-windows-amd64" {
|
|
depends = ["notarize-windows-386"]
|
|
action "notarize-windows-amd64" {
|
|
organization = "hashicorp"
|
|
repository = "crt-workflows-common"
|
|
workflow = "notarize-windows-amd64"
|
|
}
|
|
|
|
notification {
|
|
on = "fail"
|
|
}
|
|
}
|
|
|
|
event "sign" {
|
|
depends = ["notarize-windows-amd64"]
|
|
action "sign" {
|
|
organization = "hashicorp"
|
|
repository = "crt-workflows-common"
|
|
workflow = "sign"
|
|
}
|
|
|
|
notification {
|
|
on = "fail"
|
|
}
|
|
}
|
|
|
|
event "sign-linux-rpms" {
|
|
depends = ["sign"]
|
|
action "sign-linux-rpms" {
|
|
organization = "hashicorp"
|
|
repository = "crt-workflows-common"
|
|
workflow = "sign-linux-rpms"
|
|
}
|
|
|
|
notification {
|
|
on = "fail"
|
|
}
|
|
}
|
|
|
|
event "verify" {
|
|
depends = ["sign-linux-rpms"]
|
|
action "verify" {
|
|
organization = "hashicorp"
|
|
repository = "crt-workflows-common"
|
|
workflow = "verify"
|
|
}
|
|
|
|
notification {
|
|
on = "fail"
|
|
}
|
|
}
|
|
|
|
event "promote-staging" {
|
|
|
|
action "promote-staging" {
|
|
organization = "hashicorp"
|
|
repository = "crt-workflows-common"
|
|
workflow = "promote-staging"
|
|
}
|
|
|
|
notification {
|
|
on = "fail"
|
|
}
|
|
|
|
notification {
|
|
on = "success"
|
|
}
|
|
}
|
|
|
|
event "promote-production" {
|
|
|
|
action "promote-production" {
|
|
organization = "hashicorp"
|
|
repository = "crt-workflows-common"
|
|
workflow = "promote-production"
|
|
}
|
|
|
|
notification {
|
|
on = "fail"
|
|
}
|
|
|
|
notification {
|
|
on = "success"
|
|
}
|
|
}
|
|
|
|
event "post-publish" {
|
|
depends = ["promote-production"]
|
|
|
|
action "post-publish" {
|
|
organization = "hashicorp"
|
|
repository = "crt-workflows-common"
|
|
workflow = "post-publish"
|
|
}
|
|
|
|
notification {
|
|
on = "fail"
|
|
}
|
|
|
|
notification {
|
|
on = "success"
|
|
}
|
|
}
|