[PM-24249] Automate PRs for sdk updates in android (#406)

## 🎟️ Tracking

<!-- Paste the link to the Jira or GitHub issue or otherwise describe /
point to where this change is coming from. -->
https://bitwarden.atlassian.net/browse/PM-24249

## 📔 Objective

<!-- Describe what the purpose of this PR is, for example what bug
you're fixing or new feature you're adding. -->
Add a new job to update the Bitwarden SDK in the Android repo whenever
there's a new version of it.

## ⏰ Reminders before review

- Contributor guidelines followed
- All formatters and local linters executed and passed
- Written new unit and / or integration tests where applicable
- Protected functional changes with optionality (feature flags)
- Used internationalization (i18n) for all UI strings
- CI builds passed
- Communicated to DevOps any deployment requirements
- Updated any necessary documentation (Confluence, contributing docs) or
informed the documentation
  team

## 🦮 Reviewer guidelines

<!-- Suggested interactions but feel free to use (or not) as you desire!
-->

- 👍 (`:+1:`) or similar for great changes
- 📝 (`:memo:`) or ℹ️ (`:information_source:`) for notes or general info
- ❓ (`:question:`) for questions
- 🤔 (`:thinking:`) or 💭 (`:thought_balloon:`) for more open inquiry
that's not quite a confirmed
  issue and could potentially benefit from discussion
- 🎨 (`:art:`) for suggestions / improvements
- ❌ (`:x:`) or ⚠️ (`:warning:`) for more significant problems or
concerns needing attention
- 🌱 (`:seedling:`) or ♻️ (`:recycle:`) for future improvements or
indications of technical debt
- ⛏ (`:pick:`) for minor or nitpick changes

Author: LRNcardozoWDF

.github/workflows/build-android.yml

@@ -6,6 +6,11 @@ on:
     branches:
       - "main"
   workflow_dispatch:
+    inputs:
+      update-android-repo:
+        description: "Update Android Repo - Opens a PR updating the SDK in bitwarden/android"
+        type: boolean
+        default: false
 
 defaults:
   run:
@@ -59,6 +64,9 @@ jobs:
     name: Combine
     runs-on: ubuntu-24.04
     needs: build
+    outputs:
+      sdk-package-id: ${{ steps.publish.outputs.sdk-package-id }}
+      sdk-version: ${{ steps.publish.outputs.sdk-version }}
     permissions:
       contents: read
       packages: write
@@ -118,7 +126,53 @@ jobs:
           ./gradlew build --warning-mode all --stacktrace
 
       - name: Publish
+        id: publish
         run: ./gradlew sdk:publish
         working-directory: crates/bitwarden-uniffi/kotlin
         env:
           GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
+
+  update:
+    name: Trigger SDK update in Android repo
+    runs-on: ubuntu-24.04
+    if: (github.ref == 'refs/heads/main' && github.event_name == 'push') || inputs.update-android-repo
+    needs: combine
+    permissions:
+      id-token: write
+
+    steps:
+      - name: Log in to Azure
+        uses: bitwarden/gh-actions/azure-login@main
+        with:
+          subscription_id: ${{ secrets.AZURE_SUBSCRIPTION_ID }}
+          tenant_id: ${{ secrets.AZURE_TENANT_ID }}
+          client_id: ${{ secrets.AZURE_CLIENT_ID }}
+
+      - name: Get Azure Key Vault secrets
+        id: get-kv-secrets
+        uses: bitwarden/gh-actions/get-keyvault-secrets@main
+        with:
+          keyvault: gh-org-bitwarden
+          secrets: "BW-GHAPP-ID,BW-GHAPP-KEY"
+
+      - name: Log out from Azure
+        uses: bitwarden/gh-actions/azure-logout@main
+
+      - name: Generate GH App token
+        uses: actions/create-github-app-token@0f859bf9e69e887678d5bbfbee594437cb440ffe # v2.1.1
+        id: app-token
+        with:
+          app-id: ${{ steps.get-kv-secrets.outputs.BW-GHAPP-ID }}
+          private-key: ${{ steps.get-kv-secrets.outputs.BW-GHAPP-KEY }}
+          owner: bitwarden
+          repositories: android
+          permission-actions: write
+
+      - name: Call SDLC SDK Update workflow in Android repo
+        env:
+          GH_TOKEN: ${{ steps.app-token.outputs.token }}
+          _SDK_PACKAGE: ${{ needs.combine.outputs.sdk-package-id }}
+          _SDK_VERSION: ${{ needs.combine.outputs.sdk-version }}
+        run: |
+          echo "🚀 Triggering sdlc-sdk-update.yml workflow in bitwarden/android repo..."
+          gh workflow run sdlc-sdk-update.yml --repo bitwarden/android --ref main -f run-mode=Update -f sdk-package=$_SDK_PACKAGE -f sdk-version=$_SDK_VERSION

crates/bitwarden-uniffi/kotlin/sdk/build.gradle

@@ -81,6 +81,18 @@ String composeVersion(String branchName){
     }
 }
 
+def exportSdkInfoToGithubOutput(String artifactId, String groupId, String version){
+    def sdkPackageId = "${groupId}:${artifactId}"
+    def isCI = System.getenv('CI') != null
+
+    if (isCI) {
+        def githubOutput = System.getenv("GITHUB_OUTPUT")
+        
+        new File(githubOutput) << "sdk-package-id=${sdkPackageId}\n"
+        new File(githubOutput) << "sdk-version=${version}\n"
+    }
+}
+
 publishing {
     publications {
         maven(MavenPublication) {
@@ -102,6 +114,8 @@ publishing {
                 version = composeVersion(branchName)
             }
 
+            exportSdkInfoToGithubOutput(artifactId,groupId,version)
+
             pom {
                 name.set("Bitwarden SDK for Android")
                 description.set(aboutThisPackage)