From 3c75e8c06dce98be91f3810dc8117ce04c11c83b Mon Sep 17 00:00:00 2001 From: nikhil2611 Date: Mon, 15 Dec 2025 23:18:05 +0530 Subject: [PATCH 01/12] added config to run bundle install to generate lock file at runtime Signed-off-by: nikhil2611 --- .github/workflows/ci-main-pull-request-stub.yml | 10 ++++++---- 1 file changed, 6 insertions(+), 4 deletions(-) diff --git a/.github/workflows/ci-main-pull-request-stub.yml b/.github/workflows/ci-main-pull-request-stub.yml index c63d99f3..cb85fc32 100644 --- a/.github/workflows/ci-main-pull-request-stub.yml +++ b/.github/workflows/ci-main-pull-request-stub.yml @@ -7,9 +7,9 @@ name: CI Pull Request on Main Branch on: pull_request: - branches: [ main, release/** ] + branches: [ nikhil/generate-lock-runtime, release/** ] push: - branches: [ main, release/** ] + branches: [ nikhil/generate-lock-runtime, release/** ] workflow_dispatch: @@ -29,7 +29,7 @@ jobs: echo "CI main pull request stub version $STUB_VERSION" call-ci-main-pr-check-pipeline: - uses: chef/common-github-actions/.github/workflows/ci-main-pull-request.yml@main + uses: chef/common-github-actions/.github/workflows/ci-main-pull-request.yml@nikhil/create-lock-file-runtime secrets: inherit permissions: id-token: write @@ -98,7 +98,9 @@ jobs: blackduck-project-group-name: 'Chef-Agents' # typically one of (Chef), Chef-Agents, Chef-Automate, Chef-Chef360, Chef-Habitat, Chef-Infrastructure-Server, Chef-Shared-Services, Chef-Non-Product' blackduck-project-name: ${{ github.event.repository.name }} # BlackDuck project name, typically the repository name generate-blackduck-sbom: true # obsolete, use perform-blackduck-sca-scan instead - + + run-bundle-install: true + generate-msft-sbom: false license_scout: false # Run license scout for license compliance (uses .license_scout.yml) From 50402ff10e69c37039d0b4839b0bcfe451dcb0d3 Mon Sep 17 00:00:00 2001 From: nikhil2611 Date: Mon, 15 Dec 2025 23:31:32 +0530 Subject: [PATCH 02/12] empty commit to run scans Signed-off-by: nikhil2611 From c9bc84daea12d2ff060e79337a91e77457758e49 Mon Sep 17 00:00:00 2001 From: nikhil2611 Date: Mon, 15 Dec 2025 23:38:10 +0530 Subject: [PATCH 03/12] updated version Signed-off-by: nikhil2611 --- .github/workflows/ci-main-pull-request-stub.yml | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/.github/workflows/ci-main-pull-request-stub.yml b/.github/workflows/ci-main-pull-request-stub.yml index cb85fc32..24778313 100644 --- a/.github/workflows/ci-main-pull-request-stub.yml +++ b/.github/workflows/ci-main-pull-request-stub.yml @@ -40,7 +40,7 @@ jobs: # go-private-modules: GOPRIVATE for Go private modules, default is 'github.com/progress-platform-services/* # if version specified, it takes precedence; can be a semver like 1.0.2-xyz or a tag like "latest" - version: '6.1.13' # ${{ github.event.repository.version }} + version: '6.1.14' # ${{ github.event.repository.version }} detect-version-source-type: 'none' # options include "none" (do not detect), "file", "github-tag" or "github-release" detect-version-source-parameter: '' # use for file name language: 'ruby' # Go, Ruby, Rust, JavaScript, TypeScript, Python, Java, C#, PHP, other - used for build and SonarQube language setting @@ -72,7 +72,7 @@ jobs: # perform SonarQube scan, with or wihout unit test coverage data # requires secrets SONAR_TOKEN and SONAR_HOST_URL (progress.sonar.com) - perform-sonarqube-scan: false + perform-sonarqube-scan: true # perform-sonar-build: true # build-profile: 'default' # report-unit-test-coverage: true From b004c98e7e02dbb5d8cebe61ddd9c8dd0a998004 Mon Sep 17 00:00:00 2001 From: nikhil2611 Date: Tue, 16 Dec 2025 00:01:41 +0530 Subject: [PATCH 04/12] setting build to true Signed-off-by: nikhil2611 --- .github/workflows/ci-main-pull-request-stub.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/ci-main-pull-request-stub.yml b/.github/workflows/ci-main-pull-request-stub.yml index 24778313..9bc95dde 100644 --- a/.github/workflows/ci-main-pull-request-stub.yml +++ b/.github/workflows/ci-main-pull-request-stub.yml @@ -65,7 +65,7 @@ jobs: polaris-executable-detect-path: 'path/to/detect' # perform application build and unit testing, will use custom repository properties when implemented for chef-primary-application, chef-build-profile, and chef-build-language - build: false + build: true # ga-build-profile: $chef-ga-build-profile # language: $chef-ga-build-language # this will be removed from stub as autodetected in central GA unit-tests: false From d1cd87880de4c60296b8a52b957bf6a62ed922f4 Mon Sep 17 00:00:00 2001 From: nikhil2611 Date: Tue, 16 Dec 2025 00:09:27 +0530 Subject: [PATCH 05/12] empty commit to run scans Signed-off-by: nikhil2611 From f7c5aff6e177d5900fd7d40000ffc0f00245f119 Mon Sep 17 00:00:00 2001 From: nikhil2611 Date: Tue, 16 Dec 2025 00:13:27 +0530 Subject: [PATCH 06/12] empty commit to run scans Signed-off-by: nikhil2611 From 6f6dd7ed9bb33b4f3164264b6ad2cbf33551554c Mon Sep 17 00:00:00 2001 From: nikhil2611 Date: Tue, 16 Dec 2025 00:24:21 +0530 Subject: [PATCH 07/12] empty commit to run scans Signed-off-by: nikhil2611 From 6db5e25820d2e2a2db11a8e9cec9a6df24d1ccba Mon Sep 17 00:00:00 2001 From: nikhil2611 Date: Tue, 16 Dec 2025 13:56:39 +0530 Subject: [PATCH 08/12] empty commit to run scans Signed-off-by: nikhil2611 From 915aa6078954bcec6000686fe34c007e728806f8 Mon Sep 17 00:00:00 2001 From: nikhil2611 Date: Tue, 16 Dec 2025 14:35:37 +0530 Subject: [PATCH 09/12] empty commit to run scans Signed-off-by: nikhil2611 From cc7eb8e464c461963199d810cd8193f57f5a36f8 Mon Sep 17 00:00:00 2001 From: nikhil2611 Date: Tue, 16 Dec 2025 14:41:39 +0530 Subject: [PATCH 10/12] empty commit to run scans Signed-off-by: nikhil2611 From b8eb8d8e30a9e347612f8817aa96548c846ee451 Mon Sep 17 00:00:00 2001 From: nikhil2611 Date: Tue, 16 Dec 2025 16:05:47 +0530 Subject: [PATCH 11/12] testing build by setting flag false Signed-off-by: nikhil2611 --- .github/workflows/ci-main-pull-request-stub.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/ci-main-pull-request-stub.yml b/.github/workflows/ci-main-pull-request-stub.yml index 9bc95dde..3c37476e 100644 --- a/.github/workflows/ci-main-pull-request-stub.yml +++ b/.github/workflows/ci-main-pull-request-stub.yml @@ -99,7 +99,7 @@ jobs: blackduck-project-name: ${{ github.event.repository.name }} # BlackDuck project name, typically the repository name generate-blackduck-sbom: true # obsolete, use perform-blackduck-sca-scan instead - run-bundle-install: true + run-bundle-install: false generate-msft-sbom: false license_scout: false # Run license scout for license compliance (uses .license_scout.yml) From a352cde186390b7fa821b3aeeba550d2eae84431 Mon Sep 17 00:00:00 2001 From: nikhil2611 Date: Tue, 16 Dec 2025 16:13:02 +0530 Subject: [PATCH 12/12] testing build by setting flag true Signed-off-by: nikhil2611 --- .github/workflows/ci-main-pull-request-stub.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/ci-main-pull-request-stub.yml b/.github/workflows/ci-main-pull-request-stub.yml index 3c37476e..9bc95dde 100644 --- a/.github/workflows/ci-main-pull-request-stub.yml +++ b/.github/workflows/ci-main-pull-request-stub.yml @@ -99,7 +99,7 @@ jobs: blackduck-project-name: ${{ github.event.repository.name }} # BlackDuck project name, typically the repository name generate-blackduck-sbom: true # obsolete, use perform-blackduck-sca-scan instead - run-bundle-install: false + run-bundle-install: true generate-msft-sbom: false license_scout: false # Run license scout for license compliance (uses .license_scout.yml)