main

Merge pull request #3788 from bcgov/NDT-694-Update-Applicant-Portal-L… #10561

production requires an approval to start deploying changes
View pending deployments

View pending deployments

requested by ccbc-service-account in main #10561
production

Review needed

Triggered via push January 16, 2025 00:33

ccbc-service-account

pushed abfbd94

main

Status Waiting

Total duration –

Artifacts 5

production requires an approval to start deploying changes
View pending deployments

View pending deployments

requested by ccbc-service-account in main #10561
production

Review needed

main.yaml

on: push

Matrix: build / build-and-push-image

install-env / install-test-env

1m 9s

is-tagged-release

27s

test-checks / trivy-scan-code

33s

test-checks / cocogitto

28s

test-checks / gitleaks

29s

test-checks / check_immutable_sqitch_files

23s

test-checks / check_deleted_sqitch_tags

26s

rebase-feature-pr

31s

Matrix: test-checks / codeql-scan

setup-s3-backup / deploy-s3-secret-to-dev

25s

setup-s3-backup / deploy-s3-secret-to-test

26s

setup-s3-backup / deploy-s3-secret-to-prod

20s

has-merge-conflict / check_merge_conflicts

30s

cleanup_feature / clean-feature-env

test-checks / lint-chart

15s

deploy-feature / setup-feature-database

test-containers / trivy-scan-app

55s

test-containers / trivy-scan-db

test-e2e / check-changes

28s

test-zap / zap-owasp-full

6m 8s

ensure-sqitch-plan-ends-with-tag

deploy-feature / deploy-feature-to-openshift-development

test-containers / renovate

45s

test-e2e / yarn-test-e2e-applicant

test-e2e / yarn-test-e2e-admin

test-e2e / yarn-test-e2e-analyst

deploy-feature / update-jira-issue

deploy / is-tagged-release

34s

deploy / deploy-to-openshift-development

30s

test-e2e / yarn-test-e2e-finalize

deploy / ensure-sqitch-plan-ends-with-tag

deploy / ... / export-secrets

23s

deploy / deploy-to-openshift-test

4m 33s

https://ccbc-test.apps.silver.devops.gov.bc.ca

deploy / deploy-to-openshift-production

production waiting for review

deploy / ... / export-secrets

17s

deploy / ... / export-secrets

deploy / create-release

deploy / ... / create_hotfix_branch

Deployment protection rules

Reviewers, timers, and other rules protecting deployments in this run

Event	Environments	Comment
ccbc-service-account requested review	production	-

Annotations

43 warnings

test-checks / lint-chart

ubuntu-latest pipelines will use ubuntu-24.04 soon. For more details, see https://github.com/actions/runner-images/issues/10636

test-checks / lint-chart

Multiple files were found for oc that matched the current OS and architecture: openshift-client-linux-4.17.12.tar.gz, openshift-client-linux-amd64-rhel8-4.17.12.tar.gz, openshift-client-linux-amd64-rhel9-4.17.12.tar.gz, openshift-client-linux-arm64-4.17.12.tar.gz, openshift-client-linux-arm64-rhel8-4.17.12.tar.gz, openshift-client-linux-arm64-rhel9-4.17.12.tar.gz, openshift-client-linux-ppc64le-4.17.12.tar.gz, openshift-client-linux-ppc64le-rhel8-4.17.12.tar.gz, openshift-client-linux-ppc64le-rhel9-4.17.12.tar.gz, openshift-client-linux-s390x-rhel8-4.17.12.tar.gz, openshift-client-linux-s390x-rhel9-4.17.12.tar.gz. Selecting the first one.

setup-s3-backup / deploy-s3-secret-to-prod

setup-s3-backup / deploy-s3-secret-to-dev

test-checks / check_immutable_sqitch_files

ubuntu-latest pipelines will use ubuntu-24.04 soon. For more details, see https://github.com/actions/runner-images/issues/10636

is-tagged-release

ubuntu-latest pipelines will use ubuntu-24.04 soon. For more details, see https://github.com/actions/runner-images/issues/10636

setup-s3-backup / deploy-s3-secret-to-test

test-checks / check_deleted_sqitch_tags

ubuntu-latest pipelines will use ubuntu-24.04 soon. For more details, see https://github.com/actions/runner-images/issues/10636

test-checks / cocogitto

ubuntu-latest pipelines will use ubuntu-24.04 soon. For more details, see https://github.com/actions/runner-images/issues/10636

test-checks / gitleaks

ubuntu-latest pipelines will use ubuntu-24.04 soon. For more details, see https://github.com/actions/runner-images/issues/10636

rebase-feature-pr

ubuntu-latest pipelines will use ubuntu-24.04 soon. For more details, see https://github.com/actions/runner-images/issues/10636

test-checks / trivy-scan-code

ubuntu-latest pipelines will use ubuntu-24.04 soon. For more details, see https://github.com/actions/runner-images/issues/10636

ensure-sqitch-plan-ends-with-tag

ubuntu-latest pipelines will use ubuntu-24.04 soon. For more details, see https://github.com/actions/runner-images/issues/10636

build / cron-sp

ubuntu-latest pipelines will use ubuntu-24.04 soon. For more details, see https://github.com/actions/runner-images/issues/10636

has-merge-conflict / check_merge_conflicts

ubuntu-latest pipelines will use ubuntu-24.04 soon. For more details, see https://github.com/actions/runner-images/issues/10636

build / db

ubuntu-latest pipelines will use ubuntu-24.04 soon. For more details, see https://github.com/actions/runner-images/issues/10636

install-env / install-test-env

ubuntu-latest pipelines will use ubuntu-24.04 soon. For more details, see https://github.com/actions/runner-images/issues/10636

test-code / jest

Your workflow is using a version of actions/cache that is scheduled for deprecation, actions/cache@v4.0.2. Please update your workflow to use either v3 or v4 of actions/cache to avoid interruptions. Learn more: https://github.blog/changelog/2024-12-05-notice-of-upcoming-releases-and-breaking-changes-for-github-actions/#actions-cache-v1-v2-and-actions-toolkit-cache-package-closing-down

build / cron-shp

ubuntu-latest pipelines will use ubuntu-24.04 soon. For more details, see https://github.com/actions/runner-images/issues/10636

test-checks / codeql-scan (javascript, linux)

ubuntu-latest pipelines will use ubuntu-24.04 soon. For more details, see https://github.com/actions/runner-images/issues/10636

test-code / schema

ubuntu-latest pipelines will use ubuntu-24.04 soon. For more details, see https://github.com/actions/runner-images/issues/10636

test-code / eslint

ubuntu-latest pipelines will use ubuntu-24.04 soon. For more details, see https://github.com/actions/runner-images/issues/10636

test-code / pgtap

ubuntu-latest pipelines will use ubuntu-24.04 soon. For more details, see https://github.com/actions/runner-images/issues/10636

test-code / reverts

ubuntu-latest pipelines will use ubuntu-24.04 soon. For more details, see https://github.com/actions/runner-images/issues/10636

SonarScanner

This action is deprecated and will be removed in a future release. Please use the sonarqube-scan-action action instead. The sonarqube-scan-action is a drop-in replacement for this action.

build / app

ubuntu-latest pipelines will use ubuntu-24.04 soon. For more details, see https://github.com/actions/runner-images/issues/10636

Sensitive data should not be used in the ARG or ENV commands: app/Dockerfile#L18

SecretsUsedInArgOrEnv: Do not use ARG or ENV instructions for sensitive data (ARG "SENTRY_AUTH_TOKEN") More info: https://docs.docker.com/go/dockerfile/rule/secrets-used-in-arg-or-env/

Sensitive data should not be used in the ARG or ENV commands: app/Dockerfile#L22

SecretsUsedInArgOrEnv: Do not use ARG or ENV instructions for sensitive data (ENV "SENTRY_AUTH_TOKEN") More info: https://docs.docker.com/go/dockerfile/rule/secrets-used-in-arg-or-env/

test-containers / trivy-scan-db

ubuntu-latest pipelines will use ubuntu-24.04 soon. For more details, see https://github.com/actions/runner-images/issues/10636

test-e2e / check-changes

ubuntu-latest pipelines will use ubuntu-24.04 soon. For more details, see https://github.com/actions/runner-images/issues/10636

test-containers / trivy-scan-app

ubuntu-latest pipelines will use ubuntu-24.04 soon. For more details, see https://github.com/actions/runner-images/issues/10636

test-containers / renovate

ubuntu-latest pipelines will use ubuntu-24.04 soon. For more details, see https://github.com/actions/runner-images/issues/10636

deploy / is-tagged-release

ubuntu-latest pipelines will use ubuntu-24.04 soon. For more details, see https://github.com/actions/runner-images/issues/10636

deploy / deploy-to-openshift-development

Unexpected input(s) 'openshift_app_namespace', 'openshift_metabase_namespace', 'openshift_metabase_prod_namespace', 'next_public_growthbook_api_key', 'aws_s3_bucket', 'aws_s3_region', 'aws_s3_key', 'aws_s3_secret_key', 'aws_role_arn', 'aws_clam_s3_bucket', 'metabase_site_url', 'metabase_embed_secret', 'cert', 'cert_key', 'cert_ca', 'pgbackrest_s3_bucket', 'session_secret', valid inputs are ['openshift_server_url', 'openshift_token', 'openshift_username', 'openshift_password', 'insecure_skip_tls_verify', 'certificate_authority_data', 'namespace', 'reveal_cluster_name']

deploy / deploy-to-openshift-development

Unexpected input(s) 'keycloak_host', 'sa_client_secret', 'sa_client_id', 'pgbackrest_s3_key', 'pgbackrest_s3_key_secret', valid inputs are ['openshift_server_url', 'openshift_token', 'openshift_app_namespace', 'openshift_metabase_namespace', 'openshift_metabase_prod_namespace', 'tag', 'client_secret', 'secure_route', 'next_public_growthbook_api_key', 'aws_s3_bucket', 'aws_clam_s3_bucket', 'aws_s3_region', 'aws_s3_key', 'aws_s3_secret_key', 'aws_role_arn', 'certbot_email', 'certbot_server', 'environment', 'enable_load_test', 'metabase_site_url', 'metabase_embed_secret', 'cert', 'cert_key', 'cert_ca', 'sp_sa_user', 'sp_sa_password', 'sp_site', 'sp_doc_library', 'sp_ms_file_name', 'sp_list_name', 'ches_url', 'ches_client', 'ches_client_secret', 'ches_to', 'ches_keycloak_host', 'pgbackrest_s3_bucket', 'er_file', 'rd_file', 'coverages_file', 'session_secret']

deploy / ensure-sqitch-plan-ends-with-tag

ubuntu-latest pipelines will use ubuntu-24.04 soon. For more details, see https://github.com/actions/runner-images/issues/10636

deploy / backup-secrets-dev / export-secrets

ubuntu-latest pipelines will use ubuntu-24.04 soon. For more details, see https://github.com/actions/runner-images/issues/10636

test-zap / zap-owasp-full

ubuntu-latest pipelines will use ubuntu-24.04 soon. For more details, see https://github.com/actions/runner-images/issues/10636

deploy / deploy-to-openshift-test

Unexpected input(s) 'keycloak_host', 'sa_client_secret', 'sa_client_id', valid inputs are ['openshift_server_url', 'openshift_token', 'openshift_app_namespace', 'openshift_metabase_namespace', 'openshift_metabase_prod_namespace', 'tag', 'client_secret', 'secure_route', 'next_public_growthbook_api_key', 'aws_s3_bucket', 'aws_clam_s3_bucket', 'aws_s3_region', 'aws_s3_key', 'aws_s3_secret_key', 'aws_role_arn', 'certbot_email', 'certbot_server', 'environment', 'enable_load_test', 'metabase_site_url', 'metabase_embed_secret', 'cert', 'cert_key', 'cert_ca', 'sp_sa_user', 'sp_sa_password', 'sp_site', 'sp_doc_library', 'sp_ms_file_name', 'sp_list_name', 'ches_url', 'ches_client', 'ches_client_secret', 'ches_to', 'ches_keycloak_host', 'pgbackrest_s3_bucket', 'er_file', 'rd_file', 'coverages_file', 'session_secret']

deploy / backup-secrets-test / export-secrets

ubuntu-latest pipelines will use ubuntu-24.04 soon. For more details, see https://github.com/actions/runner-images/issues/10636

Artifacts

Produced during runtime

Name	Size
bcgov~CONN-CCBC-portal~RUQ4HR.dockerbuild	43.4 KB
bcgov~CONN-CCBC-portal~WO2O3U.dockerbuild	80.9 KB
bcgov~CONN-CCBC-portal~X6GZV9.dockerbuild	76.4 KB
bcgov~CONN-CCBC-portal~X9QG2P.dockerbuild	117 KB
zap_scan	362 KB

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Merge pull request #3788 from bcgov/NDT-694-Update-Applicant-Portal-L… #10561

Summary