Change main CI workflow, use workflow_run to trigger "stackhpc", "extra", and "trivyscan" workflows.

maxstack · maxstack · commit b4aa4056b089 · 2025-09-18T13:17:24.000+01:00
Expecting this to allow quicker re-runs of failed workflows where we currently have to wait until the CI has finished before we can re-run a failure.
diff --git a/.github/workflows/extra.yml b/.github/workflows/extra.yml
@@ -6,8 +6,11 @@
 
 name: Test extra build
 on:
-  workflow_call:
   workflow_dispatch:
+  workflow_run:
+    workflows: ["extra"]
+    types:
+      - completed
 
 permissions:
   contents: read
diff --git a/.github/workflows/main.yml b/.github/workflows/main.yml
@@ -127,23 +127,29 @@ jobs:
     needs: files_changed
     if: |
       needs.files_changed.outputs.stackhpc == 'true'
-    uses: ./.github/workflows/stackhpc.yml
-    secrets: inherit
+    runs-on: ubuntu-latest
+    steps:
+      # No-op job to trigger workflow 'stackhpc.yml' via workflow_run
+      uses: mattdesl/no-op@32ec85ff176f761f607087006bda993440da5fe4
 
   extra:
     name: Test extra build
     needs: files_changed
     if: |
       github.event_name != 'pull_request' && needs.files_changed.outputs.extra_on_push == 'true' ||
       github.event_name == 'pull_request' && needs.files_changed.outputs.extra_on_pull_request == 'true'
-    uses: ./.github/workflows/extra.yml
-    secrets: inherit
+    runs-on: ubuntu-latest
+    steps:
+      # No-op job to trigger workflow 'extra.yml' via workflow_run
+      uses: mattdesl/no-op@32ec85ff176f761f607087006bda993440da5fe4
 
   trivyscan:
     name: Trivy scan image for vulnerabilities
     needs: files_changed
     if: |
       github.event_name == 'pull_request' &&
       needs.files_changed.outputs.trivyscan == 'true'
-    uses: ./.github/workflows/trivyscan.yml
-    secrets: inherit
+    runs-on: ubuntu-latest
+    steps:
+      # No-op job to trigger workflow 'trivyscan.yml' via workflow_run
+      uses: mattdesl/no-op@32ec85ff176f761f607087006bda993440da5fe4
diff --git a/.github/workflows/stackhpc.yml b/.github/workflows/stackhpc.yml
@@ -6,8 +6,11 @@
 
 name: Test deployment and reimage on OpenStack
 on:
-  workflow_call:
   workflow_dispatch:
+  workflow_run:
+    workflows: ["stackhpc"]
+    types:
+      - completed
 
 permissions:
   contents: read
diff --git a/.github/workflows/trivyscan.yml b/.github/workflows/trivyscan.yml
@@ -6,8 +6,11 @@
 
 name: Trivy scan image for vulnerabilities
 on:
-  workflow_call:
   workflow_dispatch:
+  workflow_run:
+    workflows: ["trivyscan"]
+    types:
+      - completed
 
 permissions:
   contents: read
