diff --git a/.github/workflows/build.yml b/.github/workflows/build.yml index 6b4d34b..7c4bfa0 100644 --- a/.github/workflows/build.yml +++ b/.github/workflows/build.yml @@ -24,21 +24,13 @@ env: == '' && secrets.AZURE_SIGNING_KEY_VAULT_URI == '' }} GITHUB_TOKEN: ${{ secrets.PULUMI_BOT_TOKEN }} PROVIDER: docker-build - PULUMI_ACCESS_TOKEN: ${{ secrets.PULUMI_ACCESS_TOKEN }} PULUMI_LOCAL_NUGET: ${{ github.workspace }}/nuget NPM_TOKEN: ${{ secrets.NPM_TOKEN }} NODE_AUTH_TOKEN: ${{ secrets.NPM_TOKEN }} - NUGET_PUBLISH_KEY: ${{ secrets.NUGET_PUBLISH_KEY }} PYPI_USERNAME: __token__ PYPI_PASSWORD: ${{ secrets.PYPI_API_TOKEN }} TRAVIS_OS_NAME: linux - SLACK_WEBHOOK_URL: ${{ secrets.SLACK_WEBHOOK_URL }} PULUMI_GO_DEP_ROOT: ${{ github.workspace }}/.. - PUBLISH_REPO_USERNAME: ${{ secrets.OSSRH_USERNAME }} - PUBLISH_REPO_PASSWORD: ${{ secrets.OSSRH_PASSWORD }} - SIGNING_KEY_ID: ${{ secrets.JAVA_SIGNING_KEY_ID }} - SIGNING_KEY: ${{ secrets.JAVA_SIGNING_KEY }} - SIGNING_PASSWORD: ${{ secrets.JAVA_SIGNING_PASSWORD }} GOVERSION: "1.21.x" NODEVERSION: "20.x" PYTHONVERSION: "3.11.8" @@ -206,6 +198,8 @@ jobs: author_name: Failure in building provider prerequisites fields: repo,commit,author,action status: ${{ job.status }} + env: + SLACK_WEBHOOK_URL: ${{ secrets.SLACK_WEBHOOK_URL }} build_sdks: needs: prerequisites runs-on: pulumi-ubuntu-8core @@ -353,6 +347,8 @@ jobs: author_name: Failure while building SDKs fields: repo,commit,author,action status: ${{ job.status }} + env: + SLACK_WEBHOOK_URL: ${{ secrets.SLACK_WEBHOOK_URL }} tag_release_if_labeled_needs_release: name: Tag release if labeled as needs-release @@ -481,7 +477,7 @@ jobs: with: environment: logins/pulumi-ci - name: Authenticate to Google Cloud - uses: google-github-actions/auth@ba79af03959ebeac9769e648f473a284504d9193 # v2.1.10 + uses: google-github-actions/auth@b7593ed2efd1c1617e1b0254da33b86225adb2a5 # v2.1.12 with: workload_identity_provider: projects/${{ env.GOOGLE_PROJECT_NUMBER }}/locations/global/workloadIdentityPools/${{ @@ -509,6 +505,8 @@ jobs: author_name: Failure in SDK tests fields: repo,commit,author,action status: ${{ job.status }} + env: + SLACK_WEBHOOK_URL: ${{ secrets.SLACK_WEBHOOK_URL }} publish: runs-on: ubuntu-latest needs: test @@ -567,6 +565,8 @@ jobs: author_name: Failure in publishing binaries fields: repo,commit,author,action status: ${{ job.status }} + env: + SLACK_WEBHOOK_URL: ${{ secrets.SLACK_WEBHOOK_URL }} publish_sdk: runs-on: ubuntu-latest needs: publish @@ -640,8 +640,14 @@ jobs: - name: Publish SDKs run: ./ci-scripts/ci/publish-tfgen-package ${{ github.workspace }} env: + NUGET_PUBLISH_KEY: ${{ secrets.NUGET_PUBLISH_KEY }} NODE_AUTH_TOKEN: ${{ secrets.NPM_TOKEN }} PYPI_PUBLISH_ARTIFACTS: all + SIGNING_KEY_ID: ${{ secrets.JAVA_SIGNING_KEY_ID }} + SIGNING_KEY: ${{ secrets.JAVA_SIGNING_KEY }} + SIGNING_PASSWORD: ${{ secrets.JAVA_SIGNING_PASSWORD }} + PUBLISH_REPO_USERNAME: ${{ secrets.OSSRH_USERNAME }} + PUBLISH_REPO_PASSWORD: ${{ secrets.OSSRH_PASSWORD }} - if: failure() && github.event_name == 'push' name: Notify Slack uses: 8398a7/action-slack@1750b5085f3ec60384090fb7c52965ef822e869e # v3.18.0 @@ -649,6 +655,8 @@ jobs: author_name: Failure in publishing SDK fields: repo,commit,author,action status: ${{ job.status }} + env: + SLACK_WEBHOOK_URL: ${{ secrets.SLACK_WEBHOOK_URL }} lint: runs-on: ubuntu-latest steps: diff --git a/.github/workflows/prerelease.yml b/.github/workflows/prerelease.yml index b2d394b..b335182 100644 --- a/.github/workflows/prerelease.yml +++ b/.github/workflows/prerelease.yml @@ -15,21 +15,13 @@ env: == '' && secrets.AZURE_SIGNING_KEY_VAULT_URI == '' }} GITHUB_TOKEN: ${{ secrets.PULUMI_BOT_TOKEN }} PROVIDER: docker-build - PULUMI_ACCESS_TOKEN: ${{ secrets.PULUMI_ACCESS_TOKEN }} PULUMI_LOCAL_NUGET: ${{ github.workspace }}/nuget NPM_TOKEN: ${{ secrets.NPM_TOKEN }} NODE_AUTH_TOKEN: ${{ secrets.NPM_TOKEN }} - NUGET_PUBLISH_KEY: ${{ secrets.NUGET_PUBLISH_KEY }} PYPI_USERNAME: __token__ PYPI_PASSWORD: ${{ secrets.PYPI_API_TOKEN }} TRAVIS_OS_NAME: linux - SLACK_WEBHOOK_URL: ${{ secrets.SLACK_WEBHOOK_URL }} PULUMI_GO_DEP_ROOT: ${{ github.workspace }}/.. - PUBLISH_REPO_USERNAME: ${{ secrets.OSSRH_USERNAME }} - PUBLISH_REPO_PASSWORD: ${{ secrets.OSSRH_PASSWORD }} - SIGNING_KEY_ID: ${{ secrets.JAVA_SIGNING_KEY_ID }} - SIGNING_KEY: ${{ secrets.JAVA_SIGNING_KEY }} - SIGNING_PASSWORD: ${{ secrets.JAVA_SIGNING_PASSWORD }} GOVERSION: "1.21.x" NODEVERSION: "20.x" PYTHONVERSION: "3.11.8" @@ -198,6 +190,8 @@ jobs: author_name: Failure in building provider prerequisites fields: repo,commit,author,action status: ${{ job.status }} + env: + SLACK_WEBHOOK_URL: ${{ secrets.SLACK_WEBHOOK_URL }} build_sdks: needs: prerequisites runs-on: pulumi-ubuntu-8core @@ -344,6 +338,8 @@ jobs: author_name: Failure while building SDKs fields: repo,commit,author,action status: ${{ job.status }} + env: + SLACK_WEBHOOK_URL: ${{ secrets.SLACK_WEBHOOK_URL }} test: runs-on: pulumi-ubuntu-8core needs: @@ -453,7 +449,7 @@ jobs: with: environment: logins/pulumi-ci - name: Authenticate to Google Cloud - uses: google-github-actions/auth@ba79af03959ebeac9769e648f473a284504d9193 # v2.1.10 + uses: google-github-actions/auth@b7593ed2efd1c1617e1b0254da33b86225adb2a5 # v2.1.12 with: workload_identity_provider: projects/${{ env.GOOGLE_PROJECT_NUMBER }}/locations/global/workloadIdentityPools/${{ @@ -481,6 +477,8 @@ jobs: author_name: Failure in SDK tests fields: repo,commit,author,action status: ${{ job.status }} + env: + SLACK_WEBHOOK_URL: ${{ secrets.SLACK_WEBHOOK_URL }} publish: runs-on: ubuntu-latest needs: test @@ -539,6 +537,8 @@ jobs: author_name: Failure in publishing binaries fields: repo,commit,author,action status: ${{ job.status }} + env: + SLACK_WEBHOOK_URL: ${{ secrets.SLACK_WEBHOOK_URL }} publish_sdk: runs-on: ubuntu-latest needs: publish @@ -612,6 +612,7 @@ jobs: - name: Publish SDKs run: ./ci-scripts/ci/publish-tfgen-package ${{ github.workspace }} env: + NUGET_PUBLISH_KEY: ${{ secrets.NUGET_PUBLISH_KEY }} NODE_AUTH_TOKEN: ${{ secrets.NPM_TOKEN }} PYPI_PUBLISH_ARTIFACTS: all - if: failure() && github.event_name == 'push' @@ -621,6 +622,8 @@ jobs: author_name: Failure in publishing SDK fields: repo,commit,author,action status: ${{ job.status }} + env: + SLACK_WEBHOOK_URL: ${{ secrets.SLACK_WEBHOOK_URL }} publish_java_sdk: runs-on: ubuntu-latest continue-on-error: true @@ -669,6 +672,11 @@ jobs: uses: gradle/gradle-build-action@ac2d340dc04d9e1113182899e983b5400c17cda1 # v3.5.0 env: PACKAGE_VERSION: ${{ env.PROVIDER_VERSION }} + SIGNING_KEY_ID: ${{ secrets.JAVA_SIGNING_KEY_ID }} + SIGNING_KEY: ${{ secrets.JAVA_SIGNING_KEY }} + SIGNING_PASSWORD: ${{ secrets.JAVA_SIGNING_PASSWORD }} + PUBLISH_REPO_PASSWORD: ${{ secrets.OSSRH_PASSWORD }} + PUBLISH_REPO_USERNAME: ${{ secrets.OSSRH_USERNAME }} with: arguments: publishToSonatype closeAndReleaseSonatypeStagingRepository build-root-directory: ./sdk/java diff --git a/.github/workflows/pull-request.yml b/.github/workflows/pull-request.yml index 0f3781c..4efd662 100644 --- a/.github/workflows/pull-request.yml +++ b/.github/workflows/pull-request.yml @@ -6,7 +6,6 @@ on: env: GITHUB_TOKEN: ${{ secrets.PULUMI_BOT_TOKEN }} PROVIDER: docker-build - PULUMI_ACCESS_TOKEN: ${{ secrets.PULUMI_ACCESS_TOKEN }} PULUMI_LOCAL_NUGET: ${{ github.workspace }}/nuget NPM_TOKEN: ${{ secrets.NPM_TOKEN }} NODE_AUTH_TOKEN: ${{ secrets.NPM_TOKEN }} @@ -14,13 +13,7 @@ env: PYPI_USERNAME: __token__ PYPI_PASSWORD: ${{ secrets.PYPI_API_TOKEN }} TRAVIS_OS_NAME: linux - SLACK_WEBHOOK_URL: ${{ secrets.SLACK_WEBHOOK_URL }} PULUMI_GO_DEP_ROOT: ${{ github.workspace }}/.. - PUBLISH_REPO_USERNAME: ${{ secrets.OSSRH_USERNAME }} - PUBLISH_REPO_PASSWORD: ${{ secrets.OSSRH_PASSWORD }} - SIGNING_KEY_ID: ${{ secrets.JAVA_SIGNING_KEY_ID }} - SIGNING_KEY: ${{ secrets.JAVA_SIGNING_KEY }} - SIGNING_PASSWORD: ${{ secrets.JAVA_SIGNING_PASSWORD }} GOVERSION: "1.21.x" NODEVERSION: "20.x" PYTHONVERSION: "3.11.8" diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml index 36f5eb4..ceea1d4 100644 --- a/.github/workflows/release.yml +++ b/.github/workflows/release.yml @@ -16,21 +16,13 @@ env: == '' && secrets.AZURE_SIGNING_KEY_VAULT_URI == '' }} GITHUB_TOKEN: ${{ secrets.PULUMI_BOT_TOKEN }} PROVIDER: docker-build - PULUMI_ACCESS_TOKEN: ${{ secrets.PULUMI_ACCESS_TOKEN }} PULUMI_LOCAL_NUGET: ${{ github.workspace }}/nuget NPM_TOKEN: ${{ secrets.NPM_TOKEN }} NODE_AUTH_TOKEN: ${{ secrets.NPM_TOKEN }} - NUGET_PUBLISH_KEY: ${{ secrets.NUGET_PUBLISH_KEY }} PYPI_USERNAME: __token__ PYPI_PASSWORD: ${{ secrets.PYPI_API_TOKEN }} TRAVIS_OS_NAME: linux - SLACK_WEBHOOK_URL: ${{ secrets.SLACK_WEBHOOK_URL }} PULUMI_GO_DEP_ROOT: ${{ github.workspace }}/.. - PUBLISH_REPO_USERNAME: ${{ secrets.OSSRH_USERNAME }} - PUBLISH_REPO_PASSWORD: ${{ secrets.OSSRH_PASSWORD }} - SIGNING_KEY_ID: ${{ secrets.JAVA_SIGNING_KEY_ID }} - SIGNING_KEY: ${{ secrets.JAVA_SIGNING_KEY }} - SIGNING_PASSWORD: ${{ secrets.JAVA_SIGNING_PASSWORD }} GOVERSION: "1.21.x" NODEVERSION: "20.x" PYTHONVERSION: "3.11.8" @@ -198,6 +190,8 @@ jobs: author_name: Failure in building provider prerequisites fields: repo,commit,author,action status: ${{ job.status }} + env: + SLACK_WEBHOOK_URL: ${{ secrets.SLACK_WEBHOOK_URL }} build_sdks: needs: prerequisites runs-on: pulumi-ubuntu-8core @@ -344,6 +338,8 @@ jobs: author_name: Failure while building SDKs fields: repo,commit,author,action status: ${{ job.status }} + env: + SLACK_WEBHOOK_URL: ${{ secrets.SLACK_WEBHOOK_URL }} test: runs-on: pulumi-ubuntu-8core needs: @@ -453,7 +449,7 @@ jobs: with: environment: logins/pulumi-ci - name: Authenticate to Google Cloud - uses: google-github-actions/auth@ba79af03959ebeac9769e648f473a284504d9193 # v2.1.10 + uses: google-github-actions/auth@b7593ed2efd1c1617e1b0254da33b86225adb2a5 # v2.1.12 with: workload_identity_provider: projects/${{ env.GOOGLE_PROJECT_NUMBER }}/locations/global/workloadIdentityPools/${{ @@ -481,6 +477,8 @@ jobs: author_name: Failure in SDK tests fields: repo,commit,author,action status: ${{ job.status }} + env: + SLACK_WEBHOOK_URL: ${{ secrets.SLACK_WEBHOOK_URL }} publish: runs-on: ubuntu-latest needs: test @@ -539,6 +537,8 @@ jobs: author_name: Failure in publishing binaries fields: repo,commit,author,action status: ${{ job.status }} + env: + SLACK_WEBHOOK_URL: ${{ secrets.SLACK_WEBHOOK_URL }} publish_sdk: runs-on: ubuntu-latest needs: publish @@ -612,6 +612,7 @@ jobs: - name: Publish SDKs run: ./ci-scripts/ci/publish-tfgen-package ${{ github.workspace }} env: + NUGET_PUBLISH_KEY: ${{ secrets.NUGET_PUBLISH_KEY }} NODE_AUTH_TOKEN: ${{ secrets.NPM_TOKEN }} PYPI_PUBLISH_ARTIFACTS: all - if: failure() && github.event_name == 'push' @@ -621,6 +622,8 @@ jobs: author_name: Failure in publishing SDK fields: repo,commit,author,action status: ${{ job.status }} + env: + SLACK_WEBHOOK_URL: ${{ secrets.SLACK_WEBHOOK_URL }} publish_java_sdk: runs-on: ubuntu-latest continue-on-error: true @@ -669,6 +672,11 @@ jobs: uses: gradle/gradle-build-action@ac2d340dc04d9e1113182899e983b5400c17cda1 # v3.5.0 env: PACKAGE_VERSION: ${{ env.PROVIDER_VERSION }} + SIGNING_KEY_ID: ${{ secrets.JAVA_SIGNING_KEY_ID }} + SIGNING_KEY: ${{ secrets.JAVA_SIGNING_KEY }} + SIGNING_PASSWORD: ${{ secrets.JAVA_SIGNING_PASSWORD }} + PUBLISH_REPO_PASSWORD: ${{ secrets.OSSRH_PASSWORD }} + PUBLISH_REPO_USERNAME: ${{ secrets.OSSRH_USERNAME }} with: arguments: publishToSonatype closeAndReleaseSonatypeStagingRepository build-root-directory: ./sdk/java diff --git a/.github/workflows/run-acceptance-tests.yml b/.github/workflows/run-acceptance-tests.yml index e15b1ec..e3a1540 100644 --- a/.github/workflows/run-acceptance-tests.yml +++ b/.github/workflows/run-acceptance-tests.yml @@ -12,21 +12,13 @@ on: env: GITHUB_TOKEN: ${{ secrets.PULUMI_BOT_TOKEN }} PROVIDER: docker-build - PULUMI_ACCESS_TOKEN: ${{ secrets.PULUMI_ACCESS_TOKEN }} PULUMI_LOCAL_NUGET: ${{ github.workspace }}/nuget NPM_TOKEN: ${{ secrets.NPM_TOKEN }} NODE_AUTH_TOKEN: ${{ secrets.NPM_TOKEN }} - NUGET_PUBLISH_KEY: ${{ secrets.NUGET_PUBLISH_KEY }} PYPI_USERNAME: __token__ PYPI_PASSWORD: ${{ secrets.PYPI_API_TOKEN }} TRAVIS_OS_NAME: linux - SLACK_WEBHOOK_URL: ${{ secrets.SLACK_WEBHOOK_URL }} PULUMI_GO_DEP_ROOT: ${{ github.workspace }}/.. - PUBLISH_REPO_USERNAME: ${{ secrets.OSSRH_USERNAME }} - PUBLISH_REPO_PASSWORD: ${{ secrets.OSSRH_PASSWORD }} - SIGNING_KEY_ID: ${{ secrets.JAVA_SIGNING_KEY_ID }} - SIGNING_KEY: ${{ secrets.JAVA_SIGNING_KEY }} - SIGNING_PASSWORD: ${{ secrets.JAVA_SIGNING_PASSWORD }} GOVERSION: "1.21.x" NODEVERSION: "20.x" PYTHONVERSION: "3.11.8" @@ -214,6 +206,8 @@ jobs: author_name: Failure in building provider prerequisites fields: repo,commit,author,action status: ${{ job.status }} + env: + SLACK_WEBHOOK_URL: ${{ secrets.SLACK_WEBHOOK_URL }} if: github.event_name == 'repository_dispatch' || github.event.pull_request.head.repo.full_name == github.repository build_sdks: @@ -364,6 +358,8 @@ jobs: author_name: Failure while building SDKs fields: repo,commit,author,action status: ${{ job.status }} + env: + SLACK_WEBHOOK_URL: ${{ secrets.SLACK_WEBHOOK_URL }} if: github.event_name == 'repository_dispatch' || github.event.pull_request.head.repo.full_name == github.repository test: @@ -477,7 +473,7 @@ jobs: with: environment: logins/pulumi-ci - name: Authenticate to Google Cloud - uses: google-github-actions/auth@ba79af03959ebeac9769e648f473a284504d9193 # v2.1.10 + uses: google-github-actions/auth@b7593ed2efd1c1617e1b0254da33b86225adb2a5 # v2.1.12 with: workload_identity_provider: projects/${{ env.GOOGLE_PROJECT_NUMBER }}/locations/global/workloadIdentityPools/${{ @@ -505,6 +501,8 @@ jobs: author_name: Failure in SDK tests fields: repo,commit,author,action status: ${{ job.status }} + env: + SLACK_WEBHOOK_URL: ${{ secrets.SLACK_WEBHOOK_URL }} if: github.event_name == 'repository_dispatch' || github.event.pull_request.head.repo.full_name == github.repository sentinel: diff --git a/.github/workflows/weekly-pulumi-update.yml b/.github/workflows/weekly-pulumi-update.yml index d499530..27f7d90 100644 --- a/.github/workflows/weekly-pulumi-update.yml +++ b/.github/workflows/weekly-pulumi-update.yml @@ -8,21 +8,13 @@ on: env: GITHUB_TOKEN: ${{ secrets.PULUMI_BOT_TOKEN }} PROVIDER: docker-build - PULUMI_ACCESS_TOKEN: ${{ secrets.PULUMI_ACCESS_TOKEN }} PULUMI_LOCAL_NUGET: ${{ github.workspace }}/nuget NPM_TOKEN: ${{ secrets.NPM_TOKEN }} NODE_AUTH_TOKEN: ${{ secrets.NPM_TOKEN }} - NUGET_PUBLISH_KEY: ${{ secrets.NUGET_PUBLISH_KEY }} PYPI_USERNAME: __token__ PYPI_PASSWORD: ${{ secrets.PYPI_API_TOKEN }} TRAVIS_OS_NAME: linux - SLACK_WEBHOOK_URL: ${{ secrets.SLACK_WEBHOOK_URL }} PULUMI_GO_DEP_ROOT: ${{ github.workspace }}/.. - PUBLISH_REPO_USERNAME: ${{ secrets.OSSRH_USERNAME }} - PUBLISH_REPO_PASSWORD: ${{ secrets.OSSRH_PASSWORD }} - SIGNING_KEY_ID: ${{ secrets.JAVA_SIGNING_KEY_ID }} - SIGNING_KEY: ${{ secrets.JAVA_SIGNING_KEY }} - SIGNING_PASSWORD: ${{ secrets.JAVA_SIGNING_PASSWORD }} GOVERSION: "1.21.x" NODEVERSION: "20.x" PYTHONVERSION: "3.11.8"