ci: add schema + context check + deploy

Author: devSharma31

.github/workflows/ci-cd.yml

@@ -1,11 +1,11 @@
-
+# yaml-language-server: $schema=https://json.schemastore.org/github-workflow.json
 name: CI/CD
 
 on:
   push:
-    branches: [ main ]
+    branches: [ "main" ]
   pull_request:
-    branches: [ main ]
+    branches: [ "main" ]
 
 permissions:
   contents: read
@@ -33,19 +33,6 @@ jobs:
       - name: Run tests
         run: pytest -q
 
-      # --- Optional: SonarCloud (uncomment to enable) ---
-      # - name: SonarCloud Scan
-      #   if: ${{ github.event_name != 'pull_request' }}
-      #   uses: SonarSource/sonarcloud-github-action@master
-      #   env:
-      #     SONAR_TOKEN: ${{ secrets.SONAR_TOKEN }}
-      #   with:
-      #     args: >
-      #       -Dsonar.projectKey=${{ vars.SONAR_PROJECT_KEY }}
-      #       -Dsonar.organization=${{ vars.SONAR_ORG }}
-      #       -Dsonar.python.version=3.11
-
-  # --- Optional: Deploy to Azure Web App (manual approval via env) ---
   deploy:
     needs: build-test
     runs-on: ubuntu-latest
@@ -54,10 +41,19 @@ jobs:
       - name: Checkout
         uses: actions/checkout@v4
 
+      # Sanity check: ensures secret/variable exist at runtime
+      - name: Check contexts
+        run: |
+          echo "AZURE_WEBAPP_NAME=${{ vars.AZURE_WEBAPP_NAME }}"
+          if [ -z "${{ secrets.AZURE_WEBAPP_PUBLISH_PROFILE }}" ]; then
+            echo "❌ Missing AZURE_WEBAPP_PUBLISH_PROFILE secret"; exit 1
+          else
+            echo "✅ Publish profile secret present"
+          fi
+
       - name: Azure WebApp Deploy
         uses: azure/webapps-deploy@v3
         with:
           app-name: ${{ vars.AZURE_WEBAPP_NAME }}
           publish-profile: ${{ secrets.AZURE_WEBAPP_PUBLISH_PROFILE }}
           package: .
-