Skip to content

Commit 2f9cd8c

Browse files
ATGardnerATGardner
committed
chore: merged from
Signed-off-by: Noam Gal <[email protected]>
2 parents 0352653 + 3a69e55 commit 2f9cd8c

File tree

57 files changed

+58993
-1144
lines changed

Some content is hidden

Large Commits have some content hidden by default. Use the searchbox below for content that may be hidden.

57 files changed

+58993
-1144
lines changed

.github/ISSUE_TEMPLATE/config.yml

Lines changed: 2 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -4,8 +4,8 @@ contact_links:
44
- name: Have you read the docs?
55
url: https://argo-workflows.readthedocs.io/en/latest
66
about: Much help can be found in the docs
7-
- name: Ask a question
8-
url: https://github.com/argoproj/argo-workflows/discussions/new
7+
- name: Ask a question about Codefresh's Argo Worklfows
8+
url: https://github.com/codefresh-io/argo-workflows/discussions/new
99
about: Ask a question or start a discussion about workflows
1010
- name: Chat on Slack
1111
url: https://argoproj.github.io/community/join-slack

.github/workflows/ci-build.yaml

Lines changed: 2 additions & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -7,7 +7,8 @@ on:
77
- "!release-2.8"
88
pull_request:
99
branches:
10-
- "main"
10+
- "master"
11+
- "release-*"
1112

1213
concurrency:
1314
group: ${{ github.workflow }}-${{ github.ref }}

.github/workflows/default-branch-check.yaml

Lines changed: 18 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -0,0 +1,18 @@
1+
name: PR check
2+
3+
on:
4+
pull_request:
5+
branches:
6+
- "release-*"
7+
8+
jobs:
9+
test-default-branch:
10+
name: base branch is a default branch
11+
runs-on: ubuntu-latest
12+
steps:
13+
- name: fail if base branch is not default branch
14+
if: ${{ github.event.pull_request.base.ref != github.event.repository.default_branch }}
15+
uses: actions/github-script@60a0d83039c74a4aee543508d2ffcb1c3799cdea # v7.0.1
16+
with:
17+
script: |
18+
core.setFailed("Base branch of the PR - ${{ github.event.pull_request.base.ref }} is not a default branch. Please reopen your PR to ${{ github.event.repository.default_branch }}")

.github/workflows/release.yaml

Lines changed: 10 additions & 68 deletions
Original file line numberDiff line numberDiff line change
@@ -22,7 +22,7 @@ permissions:
2222
jobs:
2323
build-linux:
2424
name: Build & push linux
25-
if: github.repository == 'argoproj/argo-workflows'
25+
if: github.repository == 'codefresh-io/argo-workflows'
2626
runs-on: ubuntu-latest
2727
strategy:
2828
matrix:
@@ -48,12 +48,6 @@ jobs:
4848
restore-keys: |
4949
${{ runner.os }}-${{ matrix.platform }}-${{ matrix.target }}-buildx-
5050
51-
- name: Docker Login
52-
uses: docker/login-action@343f7c4344506bcbf9b4de18042ae17996df046d # v3.0.0
53-
with:
54-
username: ${{ secrets.DOCKERIO_USERNAME }}
55-
password: ${{ secrets.DOCKERIO_PASSWORD }}
56-
5751
- name: Login to Quay
5852
uses: docker/login-action@343f7c4344506bcbf9b4de18042ae17996df046d # v3.0.0
5953
with:
@@ -89,20 +83,14 @@ jobs:
8983
--platform="${PLATFORM}" \
9084
--target $TARGET \
9185
--provenance=false \
92-
--tag $image_name \
9386
--tag quay.io/$image_name .
9487
9588
build-windows:
9689
name: Build & push windows
97-
if: github.repository == 'argoproj/argo-workflows'
90+
if: github.repository == 'codefresh-io/argo-workflows'
9891
runs-on: windows-2022
9992
steps:
10093
- uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1
101-
- name: Docker Login
102-
uses: Azure/docker-login@83efeb77770c98b620c73055fbb59b2847e17dc0 # v1.0.1
103-
with:
104-
username: ${{ secrets.DOCKERIO_USERNAME }}
105-
password: ${{ secrets.DOCKERIO_PASSWORD }}
10694

10795
- name: Login to Quay
10896
uses: Azure/docker-login@83efeb77770c98b620c73055fbb59b2847e17dc0 # v1.0.1
@@ -134,25 +122,18 @@ jobs:
134122
-f Dockerfile.windows \
135123
.
136124
137-
docker push $image_name
138-
139125
docker tag $image_name quay.io/$image_name
140126
docker push quay.io/$image_name
141127
142128
done
143129
144130
push-images:
145131
name: Push manifest with all images
146-
if: github.repository == 'argoproj/argo-workflows'
132+
if: github.repository == 'codefresh-io/argo-workflows'
147133
runs-on: ubuntu-latest
148134
needs: [ build-linux, build-windows ]
149135
steps:
150136
- uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1
151-
- name: Docker Login
152-
uses: Azure/docker-login@83efeb77770c98b620c73055fbb59b2847e17dc0 # v1.0.1
153-
with:
154-
username: ${{ secrets.DOCKERIO_USERNAME }}
155-
password: ${{ secrets.DOCKERIO_PASSWORD }}
156137

157138
- name: Login to Quay
158139
uses: Azure/docker-login@83efeb77770c98b620c73055fbb59b2847e17dc0 # v1.0.1
@@ -161,16 +142,9 @@ jobs:
161142
username: ${{ secrets.QUAYIO_USERNAME }}
162143
password: ${{ secrets.QUAYIO_PASSWORD }}
163144

164-
- name: Install cosign
165-
uses: sigstore/cosign-installer@e1523de7571e31dbe865fd2e80c5c7c23ae71eb4 # v3.4.0
166-
with:
167-
cosign-release: 'v2.2.3'
168-
169145
- name: Push Multiarch Image
170146
env:
171147
DOCKERIO_ORG: ${{ secrets.DOCKERIO_ORG }}
172-
COSIGN_PRIVATE_KEY: ${{secrets.COSIGN_PRIVATE_KEY}}
173-
COSIGN_PASSWORD: ${{secrets.COSIGN_PASSWORD}}
174148
run: |
175149
echo $(jq -c '. + { "experimental": "enabled" }' ${DOCKER_CONFIG}/config.json) > ${DOCKER_CONFIG}/config.json
176150
@@ -186,36 +160,25 @@ jobs:
186160
image_name="${docker_org}/${target}:${tag}"
187161
188162
if [ $target = "argoexec" ]; then
189-
docker manifest create $image_name ${image_name}-linux-arm64 ${image_name}-linux-amd64 ${image_name}-windows
190163
docker manifest create quay.io/$image_name quay.io/${image_name}-linux-arm64 quay.io/${image_name}-linux-amd64 quay.io/${image_name}-windows
191164
else
192-
docker manifest create $image_name ${image_name}-linux-arm64 ${image_name}-linux-amd64
193165
docker manifest create quay.io/$image_name quay.io/${image_name}-linux-arm64 quay.io/${image_name}-linux-amd64
194166
fi
195167
196-
docker manifest push $image_name
197168
docker manifest push quay.io/$image_name
198169
199-
cosign sign -y --key env://COSIGN_PRIVATE_KEY quay.io/$image_name
200-
201170
done
202171
203172
test-images-linux-amd64:
204173
name: Try pulling linux/amd64
205-
if: github.repository == 'argoproj/argo-workflows'
174+
if: github.repository == 'codefresh-io/argo-workflows'
206175
runs-on: ubuntu-latest
207176
needs: [ push-images ]
208177
strategy:
209178
matrix:
210179
platform: [ linux/amd64 ]
211180
target: [ workflow-controller, argocli, argoexec ]
212181
steps:
213-
- name: Docker Login
214-
uses: Azure/docker-login@83efeb77770c98b620c73055fbb59b2847e17dc0 # v1.0.1
215-
with:
216-
username: ${{ secrets.DOCKERIO_USERNAME }}
217-
password: ${{ secrets.DOCKERIO_PASSWORD }}
218-
219182
- name: Login to Quay
220183
uses: Azure/docker-login@83efeb77770c98b620c73055fbb59b2847e17dc0 # v1.0.1
221184
with:
@@ -235,21 +198,14 @@ jobs:
235198
fi
236199
237200
image_name="${DOCKERIO_ORG}/${TARGET}:${tag}"
238-
docker pull $image_name
239201
docker pull quay.io/$image_name
240202
241203
test-images-windows:
242204
name: Try pulling windows
243-
if: github.repository == 'argoproj/argo-workflows'
205+
if: github.repository == 'codefresh-io/argo-workflows'
244206
runs-on: windows-2022
245207
needs: [ push-images ]
246208
steps:
247-
- name: Docker Login
248-
uses: Azure/docker-login@83efeb77770c98b620c73055fbb59b2847e17dc0 # v1.0.1
249-
with:
250-
username: ${{ secrets.DOCKERIO_USERNAME }}
251-
password: ${{ secrets.DOCKERIO_PASSWORD }}
252-
253209
- name: Login to Quay
254210
uses: Azure/docker-login@83efeb77770c98b620c73055fbb59b2847e17dc0 # v1.0.1
255211
with:
@@ -269,20 +225,17 @@ jobs:
269225
targets="argoexec"
270226
for target in $targets; do
271227
image_name="${docker_org}/${target}:${tag}"
272-
docker pull $image_name
273228
docker pull quay.io/$image_name
274229
done
275230
276231
publish-release:
277232
permissions:
278233
contents: write # for softprops/action-gh-release to create GitHub release
279234
runs-on: ubuntu-latest
280-
if: github.repository == 'argoproj/argo-workflows'
235+
if: github.repository == 'codefresh-io/argo-workflows'
281236
needs: [ push-images, test-images-linux-amd64, test-images-windows ]
282237
env:
283238
NODE_OPTIONS: --max-old-space-size=4096
284-
COSIGN_PRIVATE_KEY: ${{secrets.COSIGN_PRIVATE_KEY}}
285-
COSIGN_PASSWORD: ${{secrets.COSIGN_PASSWORD}}
286239
steps:
287240
- uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1
288241
- uses: actions/setup-node@b39b52d1213e96004bfcb1c61a8a6fa8ab84f3e8 # v4.0.1
@@ -296,10 +249,6 @@ jobs:
296249
with:
297250
path: ui/node_modules
298251
key: ${{ runner.os }}-node-dep-v1-${{ hashFiles('**/yarn.lock') }}
299-
- name: Install cosign
300-
uses: sigstore/cosign-installer@e1523de7571e31dbe865fd2e80c5c7c23ae71eb4 # v3.4.0
301-
with:
302-
cosign-release: 'v2.2.3'
303252
# https://stackoverflow.com/questions/58033366/how-to-get-current-branch-within-github-actions
304253
- run: |
305254
if [ ${GITHUB_REF##*/} = main ]; then
@@ -313,9 +262,9 @@ jobs:
313262
- run: generator -o dist -p .
314263
- run: yarn --cwd ui install
315264
- run: generator -o dist -p ui
316-
- run: bom generate --image quay.io/argoproj/workflow-controller:$VERSION -o dist/workflow-controller.spdx
317-
- run: bom generate --image quay.io/argoproj/argocli:$VERSION -o dist/argocli.spdx
318-
- run: bom generate --image quay.io/argoproj/argoexec:$VERSION -o dist/argoexec.spdx
265+
- run: bom generate --image quay.io/codefresh/workflow-controller:$VERSION -o dist/workflow-controller.spdx
266+
- run: bom generate --image quay.io/codefresh/argocli:$VERSION -o dist/argocli.spdx
267+
- run: bom generate --image quay.io/codefresh/argoexec:$VERSION -o dist/argoexec.spdx
319268
# pack the boms into one file to make it easy to download
320269
- run: tar -zcf dist/sbom.tar.gz dist/*.spdx
321270
- run: make release-notes VERSION=$VERSION
@@ -329,11 +278,6 @@ jobs:
329278
- name: Print version (please check it is not dirty)
330279
run: dist/argo-linux-amd64 version
331280
- run: make checksums
332-
- name: Sign checksums and create public key for release assets
333-
run: |
334-
cosign sign-blob -y --key env://COSIGN_PRIVATE_KEY ./dist/argo-workflows-cli-checksums.txt > ./dist/argo-workflows-cli-checksums.sig
335-
# Retrieves the public key to release as an asset
336-
cosign public-key --key env://COSIGN_PRIVATE_KEY > ./dist/argo-workflows-cosign.pub
337281

338282
# https://github.com/softprops/action-gh-release
339283
# This will publish the release and upload assets.
@@ -347,10 +291,8 @@ jobs:
347291
body_path: release-notes
348292
files: |
349293
dist/argo-*.gz
350-
dist/argo-workflows-cli-checksums.txt
351-
dist/argo-workflows-cli-checksums.sig
294+
dist/argo-*.gz.sha256
352295
dist/manifests/*.yaml
353-
dist/argo-workflows-cosign.pub
354296
dist/sbom.tar.gz
355297
env:
356298
GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}

0 commit comments

Comments
 (0)