Skip to content

config: update rc branch naming and sanitize input #7869

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 1 commit into from
Aug 12, 2025
Merged

config: update rc branch naming and sanitize input #7869

merged 1 commit into from
Aug 12, 2025

Conversation

@tsmithsz
Copy link
Contributor

@tsmithsz tsmithsz commented Aug 12, 2025
edited
Loading

Problem

The prerelease workflow is configured to run on branches matching release/*. The RC creation workflow previously created branches like rc-YYYYMMDD instead of release/rc-YYMMDD, which did not match the trigger pattern, meaning the prerelease workflow was never invoked automatically.

As it stands now any team member with write access can perform workflow_dispatch injection.

Solution

Update the RC creation workflow to create branches in the format release/rc-YYYYMMDD instead of rc-YYYYMMDD, ensuring they match the prerelease workflow’s release/* branch trigger and are picked up for prerelease builds.

Sanitize the input fields via Github environment variables

  • Treat all work as PUBLIC. Private feature/x branches will not be squash-merged at release time.
  • Your code changes must meet the guidelines in CONTRIBUTING.md.
  • License: I confirm that my contribution is made under the terms of the Apache 2.0 license.

@tsmithsz tsmithsz requested a review from a team as a code owner August 12, 2025 06:52
@amazon-inspector-ohio
Copy link

amazon-inspector-ohio bot commented Aug 12, 2025

⏳ I'm reviewing this pull request for security vulnerabilities and code quality issues. I'll provide an update when I'm done

@amazon-inspector-ohio
Copy link

amazon-inspector-ohio bot commented Aug 12, 2025

✅ I finished the code review, and didn't find any security or code quality issues.

@tsmithsz tsmithsz changed the title chore: user release/rc-* branch naming ci: update the user release/rc-* branch naming Aug 12, 2025
@tsmithsz tsmithsz changed the title ci: update the user release/rc-* branch naming ci: update the release branch naming Aug 12, 2025
@tsmithsz tsmithsz closed this Aug 12, 2025
@tsmithsz tsmithsz reopened this Aug 12, 2025
@amazon-inspector-ohio
Copy link

amazon-inspector-ohio bot commented Aug 12, 2025

⏳ I'm reviewing this pull request for security vulnerabilities and code quality issues. I'll provide an update when I'm done

@amazon-inspector-ohio
Copy link

amazon-inspector-ohio bot commented Aug 12, 2025

✅ I finished the code review, and didn't find any security or code quality issues.

@tsmithsz tsmithsz changed the title ci: update the release branch naming config: update rc branch naming and sanitize input Aug 12, 2025
bywang56
bywang56 reviewed Aug 12, 2025
View reviewed changes
@tsmithsz tsmithsz merged commit f084467 into aws:master Aug 12, 2025
31 checks passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@bywang56 bywang56 bywang56 left review comments

@yueny2020 yueny2020 yueny2020 approved these changes

@chungjac chungjac chungjac approved these changes

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

4 participants

@tsmithsz @yueny2020 @bywang56 @chungjac