Change certificate key size to 4096 bits (#984) #1826
Workflow file for this run
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| name: Pull Request pipeline | |
| on: | |
| pull_request: | |
| types: [ synchronize, opened, reopened, ready_for_review ] | |
| branches: | |
| - main | |
| - 'release-**' | |
| jobs: | |
| check-wait-for-image-build: | |
| outputs: | |
| check: ${{ steps.changed-files.outputs.any_modified }} | |
| name: Check whether to wait for image build | |
| runs-on: ubuntu-latest | |
| if: ${{ github.event.pull_request.draft == false }} | |
| steps: | |
| - uses: actions/checkout@v4 | |
| - uses: tj-actions/changed-files@90a06d6ba9543371ab4df8eeca0be07ca6054959 | |
| id: changed-files | |
| with: | |
| files_ignore: | | |
| docs/** | |
| **/*.md | |
| **/*.yaml | |
| tests/performance/** | |
| OWNERS | |
| CODEOWNERS | |
| .github/** | |
| .reuse/** | |
| - name: List all changed files | |
| run: echo '${{ steps.changed-files.outputs.all_changed_files }}' >> $GITHUB_STEP_SUMMARY | |
| wait-for-image-build: | |
| name: Wait for image build | |
| runs-on: ubuntu-latest | |
| needs: [check-wait-for-image-build] | |
| if: ${{ needs.check-wait-for-image-build.outputs.check== 'true' }} | |
| steps: | |
| - uses: actions/checkout@v4 | |
| - uses: ./.github/actions/wait-for-job-succeed-or-fail | |
| with: | |
| job-name: 'pull-istio-operator-build' | |
| github-auth-token: ${{ secrets.GITHUB_TOKEN }} | |
| check-unit-test: | |
| outputs: | |
| check: ${{ steps.changed-files.outputs.any_modified }} | |
| name: Check whether unit test & lint should run based on the changed files | |
| if: github.event.pull_request.draft == false | |
| runs-on: ubuntu-latest | |
| steps: | |
| - uses: actions/checkout@v4 | |
| - uses: tj-actions/changed-files@90a06d6ba9543371ab4df8eeca0be07ca6054959 | |
| id: changed-files | |
| with: | |
| files_ignore: | | |
| docs/** | |
| **/*.md | |
| tests/performance/** | |
| OWNERS | |
| CODEOWNERS | |
| sec-scanners-config.yaml | |
| .github/** | |
| .reuse/** | |
| - name: List all changed files | |
| run: echo '${{ steps.changed-files.outputs.all_changed_files }}' >> $GITHUB_STEP_SUMMARY | |
| dispatch-unit-test: | |
| name: Dispatch unit test | |
| needs: [check-unit-test] | |
| uses: ./.github/workflows/pull-unit-lint.yaml | |
| if: ${{ needs.check-unit-test.outputs.check == 'true' }} | |
| secrets: inherit | |
| check-integration: | |
| outputs: | |
| check: ${{ steps.changed-files.outputs.any_modified }} | |
| name: Check whether integration tests should run based on the changed files | |
| if: github.event.pull_request.draft == false | |
| runs-on: ubuntu-latest | |
| steps: | |
| - uses: actions/checkout@v4 | |
| - uses: tj-actions/changed-files@90a06d6ba9543371ab4df8eeca0be07ca6054959 | |
| id: changed-files | |
| with: | |
| files_ignore: | | |
| docs/** | |
| **/*.md | |
| tests/performance/** | |
| OWNERS | |
| CODEOWNERS | |
| sec-scanners-config.yaml | |
| .github/** | |
| .reuse/** | |
| - name: List all changed files | |
| run: echo '${{ steps.changed-files.outputs.all_changed_files }}' >> $GITHUB_STEP_SUMMARY | |
| dispatch-integration: | |
| name: Dispatch integration tests | |
| needs: [check-integration,wait-for-image-build] | |
| uses: ./.github/workflows/pull-integration.yaml | |
| if: ${{ needs.check-integration.outputs.check == 'true' }} | |
| secrets: inherit | |
| check-ui: | |
| outputs: | |
| check: ${{ steps.changed-files.outputs.any_modified }} | |
| name: Check whether UI tests should run based on the changed files | |
| if: github.event.pull_request.draft == false | |
| runs-on: ubuntu-latest | |
| steps: | |
| - uses: actions/checkout@v4 | |
| - uses: tj-actions/changed-files@90a06d6ba9543371ab4df8eeca0be07ca6054959 | |
| id: changed-files | |
| with: | |
| files: | | |
| config/ui-extensions/** | |
| config/crd/** | |
| tests/ui/** | |
| .github/workflows/ui-tests.yaml | |
| - name: List all changed files | |
| run: echo '${{ steps.changed-files.outputs.all_changed_files }}' >> $GITHUB_STEP_SUMMARY | |
| dispatch-ui: | |
| name: Dispatch UI tests | |
| needs: [check-ui,wait-for-image-build] | |
| uses: ./.github/workflows/ui-tests.yaml | |
| if: ${{ needs.check-ui.outputs.check == 'true' }} | |
| secrets: inherit | |
| check-verify-pins: | |
| outputs: | |
| check: ${{ steps.changed-files.outputs.any_modified }} | |
| name: Check whether to run verify-commit-pins | |
| runs-on: ubuntu-latest | |
| steps: | |
| - uses: actions/checkout@v4 | |
| - uses: tj-actions/changed-files@90a06d6ba9543371ab4df8eeca0be07ca6054959 | |
| id: changed-files | |
| with: | |
| files: | | |
| .github/workflows/** | |
| - name: List all changed files | |
| run: echo '${{ steps.changed-files.outputs.all_changed_files }}' >> $GITHUB_STEP_SUMMARY | |
| dispatch-verify-pins: | |
| name: Dispatch verify-commit-pins | |
| needs: [check-verify-pins] | |
| uses: ./.github/workflows/verify-commit-pins.yaml | |
| if: ${{ needs.check-verify-pins.outputs.check == 'true' }} | |
| secrets: inherit |