From 8bca75ecb138190b7ab4a9a574f6d67823d743a8 Mon Sep 17 00:00:00 2001 From: Eli Fine Date: Tue, 27 Jan 2026 11:23:00 +0000 Subject: [PATCH 1/8] fix --- template/.github/workflows/ci.yaml.jinja | 8 ++++---- 1 file changed, 4 insertions(+), 4 deletions(-) diff --git a/template/.github/workflows/ci.yaml.jinja b/template/.github/workflows/ci.yaml.jinja index e583efd..4addad9 100644 --- a/template/.github/workflows/ci.yaml.jinja +++ b/template/.github/workflows/ci.yaml.jinja @@ -109,15 +109,15 @@ jobs: fi echo "✅ All jobs completed successfully or were skipped" - - name: Mark required-check as succeeded - if: needs.check-skip-duplicate.outputs.should-run == 'true' + - name: Mark the required-check from the job triggered by the push as succeeded so the PR can be merged + if: ${{ github.event_name == 'pull_request' && needs.check-skip-duplicate.outputs.should-run == 'true'}} env: GH_TOKEN: ${{ github.token }} run: | gh api \ -X POST -H "Accept: application/vnd.github.v3+json" \ - "/repos/${{ github.repository }}/statuses/${{ github.sha }}" \ - -f state=success -f context="required-check" -f description="✅ All required checks passed" \ + "/repos/${{ github.repository }}/statuses/${{ github.event.after }}" \ + -f state=success -f context="required-check" -f description="✅ All required checks passed in the job triggered by pull_request" \ -f target_url="${{ github.server_url }}/${{ github.repository }}/actions/runs/${{ github.run_id }}" - name: Mark updated Dependabot commit of devcontainer hash as succeeded From 3b47c28aa9a816e1a60052d65540911bb1a81875 Mon Sep 17 00:00:00 2001 From: Eli Fine Date: Tue, 27 Jan 2026 13:19:10 +0000 Subject: [PATCH 2/8] href --- template/.github/workflows/ci.yaml.jinja | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/template/.github/workflows/ci.yaml.jinja b/template/.github/workflows/ci.yaml.jinja index 4addad9..d619456 100644 --- a/template/.github/workflows/ci.yaml.jinja +++ b/template/.github/workflows/ci.yaml.jinja @@ -116,7 +116,7 @@ jobs: run: | gh api \ -X POST -H "Accept: application/vnd.github.v3+json" \ - "/repos/${{ github.repository }}/statuses/${{ github.event.after }}" \ + "${{ github.event.pull_request.statuses.href }}" \ -f state=success -f context="required-check" -f description="✅ All required checks passed in the job triggered by pull_request" \ -f target_url="${{ github.server_url }}/${{ github.repository }}/actions/runs/${{ github.run_id }}" From 223b0e5a58c3ea073cbffc96d88dc839b4fca9f4 Mon Sep 17 00:00:00 2001 From: Eli Fine Date: Tue, 27 Jan 2026 13:21:00 +0000 Subject: [PATCH 3/8] links --- template/.github/workflows/ci.yaml.jinja | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/template/.github/workflows/ci.yaml.jinja b/template/.github/workflows/ci.yaml.jinja index d619456..dca7f33 100644 --- a/template/.github/workflows/ci.yaml.jinja +++ b/template/.github/workflows/ci.yaml.jinja @@ -116,7 +116,7 @@ jobs: run: | gh api \ -X POST -H "Accept: application/vnd.github.v3+json" \ - "${{ github.event.pull_request.statuses.href }}" \ + "${{ github.event.pull_request._links.statuses.href }}" \ -f state=success -f context="required-check" -f description="✅ All required checks passed in the job triggered by pull_request" \ -f target_url="${{ github.server_url }}/${{ github.repository }}/actions/runs/${{ github.run_id }}" From 46ed51128b497e617d6a6288cf46ed5cf540ee0c Mon Sep 17 00:00:00 2001 From: Eli Fine Date: Tue, 27 Jan 2026 13:31:36 +0000 Subject: [PATCH 4/8] lint --- template/.github/workflows/ci.yaml.jinja | 1 + 1 file changed, 1 insertion(+) diff --git a/template/.github/workflows/ci.yaml.jinja b/template/.github/workflows/ci.yaml.jinja index dca7f33..fe78d98 100644 --- a/template/.github/workflows/ci.yaml.jinja +++ b/template/.github/workflows/ci.yaml.jinja @@ -55,6 +55,7 @@ jobs: needs: - get-values - check-skip-duplicate + - lint if: needs.check-skip-duplicate.outputs.should-run == 'true' permissions: id-token: write # needed to assume OIDC roles (e.g. for downloading from CodeArtifact) From 96a4f91b2101a35a2e5733f26f54f515df9d5228 Mon Sep 17 00:00:00 2001 From: Eli Fine Date: Tue, 27 Jan 2026 13:59:33 +0000 Subject: [PATCH 5/8] new name --- template/.github/workflows/ci.yaml.jinja | 20 ++++---------------- 1 file changed, 4 insertions(+), 16 deletions(-) diff --git a/template/.github/workflows/ci.yaml.jinja b/template/.github/workflows/ci.yaml.jinja index fe78d98..de2a6a1 100644 --- a/template/.github/workflows/ci.yaml.jinja +++ b/template/.github/workflows/ci.yaml.jinja @@ -73,7 +73,7 @@ jobs: AWS_ACCOUNT_ID: "{% endraw %}{{ aws_production_account_id }}{% raw %}" SHOW_PREVIEW_COMMENT_ON_PR: ${{ github.event_name == 'pull_request' }} - required-check: + workflow-summary: runs-on: {% endraw %}{{ gha_linux_runner }}{% raw %} timeout-minutes: {% endraw %}{{ gha_short_timeout_minutes }}{% raw %} needs: @@ -82,21 +82,9 @@ jobs: - check-skip-duplicate - pulumi-workflow permissions: - statuses: write # needed for updating status on Dependabot PRs + statuses: write # needed for updating status on PRs if: always() steps: - - name: Set status for duplicate detection - if: needs.check-skip-duplicate.outputs.should-run != 'true' - env: - GH_TOKEN: ${{ github.token }} - run: | - gh api \ - -X POST -H "Accept: application/vnd.github.v3+json" \ - "/repos/${{ github.repository }}/statuses/${{ github.sha }}" \ - -f state=pending -f context="required-check" -f description="⏭️ Workflow skipped due to duplicate detection" - echo "⏭️ Workflow was skipped due to duplicate detection - status set to pending to block merge" - exit 0 - - name: fail if prior job failure run: | failure_pattern="^(failure|cancelled)$" @@ -117,7 +105,7 @@ jobs: run: | gh api \ -X POST -H "Accept: application/vnd.github.v3+json" \ - "${{ github.event.pull_request._links.statuses.href }}" \ + "${{ github.event.pull_request.statuses_url }}" \ -f state=success -f context="required-check" -f description="✅ All required checks passed in the job triggered by pull_request" \ -f target_url="${{ github.server_url }}/${{ github.repository }}/actions/runs/${{ github.run_id }}" @@ -130,4 +118,4 @@ jobs: -X POST -H "Accept: application/vnd.github.v3+json" \ "/repos/${{ github.repository }}/statuses/${{ needs.get-values.outputs.new-dependabot-sha }}" \ -f state=success -f context="required-check" -f description="Initial CI run passed" \ - -f target_url="${{ github.server_url }}/${{ github.repository }}/actions/runs/${{ github.run_id }}"{% endraw %} + -f target_url="${{ github.server_url }}/${{ github.repository }}/actions/runs/${{ github.run_id }}" From 642e5e12299fbf5ba9d6d126aef045836f7a34ea Mon Sep 17 00:00:00 2001 From: Eli Fine Date: Tue, 27 Jan 2026 13:59:51 +0000 Subject: [PATCH 6/8] nit --- template/.github/workflows/ci.yaml.jinja | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/template/.github/workflows/ci.yaml.jinja b/template/.github/workflows/ci.yaml.jinja index de2a6a1..8b8cbd7 100644 --- a/template/.github/workflows/ci.yaml.jinja +++ b/template/.github/workflows/ci.yaml.jinja @@ -99,7 +99,7 @@ jobs: echo "✅ All jobs completed successfully or were skipped" - name: Mark the required-check from the job triggered by the push as succeeded so the PR can be merged - if: ${{ github.event_name == 'pull_request' && needs.check-skip-duplicate.outputs.should-run == 'true'}} + if: ${{ github.event_name == 'pull_request' }} env: GH_TOKEN: ${{ github.token }} run: | From e1a20c59c22e8041b691069b8fcc37b1ae8f90f8 Mon Sep 17 00:00:00 2001 From: Eli Fine Date: Tue, 27 Jan 2026 14:00:11 +0000 Subject: [PATCH 7/8] More comment --- template/.github/workflows/ci.yaml.jinja | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/template/.github/workflows/ci.yaml.jinja b/template/.github/workflows/ci.yaml.jinja index 8b8cbd7..83b3490 100644 --- a/template/.github/workflows/ci.yaml.jinja +++ b/template/.github/workflows/ci.yaml.jinja @@ -98,7 +98,7 @@ jobs: fi echo "✅ All jobs completed successfully or were skipped" - - name: Mark the required-check from the job triggered by the push as succeeded so the PR can be merged + - name: Mark the required-check as succeeded so the PR can be merged if: ${{ github.event_name == 'pull_request' }} env: GH_TOKEN: ${{ github.token }} From 4d5e7d8e626e7aa5ebc422a1087db8a8e14cbc4e Mon Sep 17 00:00:00 2001 From: Eli Fine Date: Tue, 27 Jan 2026 14:09:18 +0000 Subject: [PATCH 8/8] raw --- template/.github/workflows/ci.yaml.jinja | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/template/.github/workflows/ci.yaml.jinja b/template/.github/workflows/ci.yaml.jinja index 83b3490..f53e398 100644 --- a/template/.github/workflows/ci.yaml.jinja +++ b/template/.github/workflows/ci.yaml.jinja @@ -118,4 +118,4 @@ jobs: -X POST -H "Accept: application/vnd.github.v3+json" \ "/repos/${{ github.repository }}/statuses/${{ needs.get-values.outputs.new-dependabot-sha }}" \ -f state=success -f context="required-check" -f description="Initial CI run passed" \ - -f target_url="${{ github.server_url }}/${{ github.repository }}/actions/runs/${{ github.run_id }}" + -f target_url="${{ github.server_url }}/${{ github.repository }}/actions/runs/${{ github.run_id }}"{% endraw %}