Commit Graph

20 Commits

Author SHA1 Message Date
Liu Shilong
6303cd91d0
[action] Update github workflows about automerge_scan and pr_cherrypick_prestep. (#15090)
Why I did it
When auto cherry pick workflow create PR, fill the body field.
Rerun Azure.sonic-buildimage on failure perday.
Work item tracking
Microsoft ADO (number only): 17979778
How I did it
How to verify it
2023-05-17 11:06:50 +08:00
Liu Shilong
03c02e3946
[action] Update AutoMergeScan action to ignore Semgrep and rerun failed job. (#14118)
Why I did it
Semgrep check has some issues. Ignore it.
check automerge label.
Ignore Azure.sonic-buildimage sub test jobs. Only check final result.
How I did it
2023-03-10 14:14:51 +08:00
xumia
39c3f650a7
[Ci] Support the SONiC reproducible build in Azure Pipelines (#13986)
Why I did it
[Ci] Support the SONiC reproducible build in Azure Pipelines
Enable the reproducible build on master branch
Enable the mirror snapshot based build on 202205+ which support snapshot build.

How I did it
Enable the build flag on Azure Pipelines.

How to verify it
2023-02-27 12:26:14 +08:00
Liu Shilong
cabaebb4b0
[action] Update github actions on trigger and label. (#13542)
Why I did it
github action will report error on forked repos. It is not by design.
keep 'Approved for xxx branch' label in auto cherry pick workflow.
How I did it
Disable github action on folked repos.
Keep 'approved for xxx' label in auto cherry pick workflow.
How to verify it
Which release bra
2023-01-30 16:57:39 +08:00
Liu Shilong
6681cad1c5
[action] Keep 'request for xxx branch' label when finished auto-cherry-pick. (#13107)
Why I did it
To keep 'Request for xxx branch' label when finished auto-cherry-pick.

How I did it
Change logic in post cherry pick action.

How to verify it
2022-12-20 16:41:04 +08:00
Liu Shilong
6f2ddc5f49
[action] Add github action to merge mssonicbld's PRs which can be merged (#12564)
* [action] Add github action to scan auto-mergeable PRs
2022-11-30 11:28:06 +08:00
Liu Shilong
844f83171b
[action] Use pull_request_target trigger instead to avoid codeQL check approval (#12509) 2022-10-27 17:36:04 +08:00
Liu Shilong
81ee9488e8
[action] Use github code scan instead of LGTM. (#12402)
* [action] Add code scan for python
2022-10-25 16:34:07 +08:00
Liu Shilong
357c1eaa1b
[action] Update automerge version, change log level and change auto cherry-pick branch name. (#12455) 2022-10-20 13:03:39 +08:00
Liu Shilong
05b1e06012
[action] Add debug info for automerge github action. (#12389) 2022-10-18 13:53:29 +08:00
Liu Shilong
247bd78da3
[action] Fix PR pre-cherry-pick action wrong author issue. (#12339) 2022-10-11 09:56:48 +08:00
Liu Shilong
09d4d3e6e7
[action] Fix trigger issue in PR pre-cherry-pick action. (#12333) 2022-10-10 17:11:31 +08:00
Liu Shilong
019e0acd51
[actions] Add auto cherry-pick actions to release branch (#11496)
* [actions] Add github actions to auto cherry-pick prs to release branches

* Add README, fix workflow
2022-10-10 16:55:00 +08:00
Mai Bui
95f4af3407
[actions] Support Semgrep by Github Actions (#12249)
Signed-off-by: maipbui <maibui@microsoft.com>
#### Why I did it
[Semgrep](https://github.com/returntocorp/semgrep) is a static analysis tool to find security vulnerabilities.
When opening a PR or commtting to PR, Semgrep performs a diff-aware scanning, which scans changed files in PRs.
When merging PR, Semgrep performs a full scan on master branch and report all findings.
Ref: - [Supported Language](https://semgrep.dev/docs/supported-languages/#language-maturity) - [Semgrep Rules](https://registry.semgrep.dev/rule)
#### How I did it
Integrate Semgrep into this repository by committing a job configuration file
#### How to verify it
PR: https://github.com/maipbui/sonic-buildimage/pull/2
Master branch full scan findings: [Master branch findings results](https://github.com/maipbui/sonic-buildimage/actions/runs/3160181876/jobs/5144332404)
PR https://github.com/maipbui/sonic-buildimage/pull/2 scan findings: [Pull request findings results](https://github.com/maipbui/sonic-buildimage/actions/runs/3160193505/jobs/5144357859)
2022-10-03 14:38:55 -04:00
Liu Shilong
98d6357ae7
[actions] Remove approve step in label action. (#12015)
Why I did it
Approve step needs special permission settings.
We already added permission setting to enable bypass merging PR.
So, approve step is not necessary.
2022-09-08 17:23:29 +08:00
Liu Shilong
030de9f26d
[actions] Add github context env in label action. (#11926) 2022-09-02 14:07:48 +08:00
Liu Shilong
4b4e311c14
[actions] Update github actions label and automerge. (#11736)
1. Add auto approve step when adding label to version upgrading PR.
2. Use mssonicbld TOKEN to merge version upgrading PR instead of 'github actions'
2022-08-29 11:24:57 +08:00
xumia
faab7d5991
[Build]: Support reproducible build for release branches (#9426)
[Build]: Support reproducible build for release branches #9426
2021-12-23 16:16:55 +08:00
xumia
57cc2081cd
Fix workflow permission issue when running in merge branch (#7417)
Fix the labeler workflow permission issue when merging from fork repo.
It impacts the labeler workflow to support auto-merge for package versions upgrade on 202012 branch. The current workaround is to add the label "automerge" on the PR sent by mssonicbld, then the automerge workflow will merge the PR.
2021-04-25 10:02:58 +08:00
xumia
12ab9af4fb
[ci] Support to merge SONiC package versions change pr automatically (#7065)
Support to merge the SONiC package versions upgrade pull request automatically.

#### How I did it
Add the automerge tag in the pull request.
1. Sent by the author mssonicbld
2. Only contains changes in files/build/**/*
3. Only for the specified branch 202012

Merge the pull request.
1. Sent by the author mssonicbld
2. The Azure Pipelines checker complete and successful
3. The pull request contains label automerge
2021-04-11 21:17:28 -07:00