mirror of
https://github.com/sourcegraph/sourcegraph.git
synced 2026-02-06 16:51:55 +00:00
fa2f1b510d
Improvements to how the Wolfi build system works in CI. This PR combines action items from https://github.com/sourcegraph/security/issues/556 and https://github.com/sourcegraph/security/issues/489 - [x] If a package changes, automatically rebuild any images that depend on it - [x] Upload packages to branch-specific repos * On `main`, packages are upload to the `@sourcegraph` repository * On branches, packages are uploaded to per-branch repos for testing - [x] Prevent packages in main repo from being overwritten * This should fail the pipeline, and it should be clear pre-merge - [x] Run the wolfi CI pipeline on `main` - [x] Run the wolfi CI pipeline on all non-`main` branches - [x] Only push base images to Dockerhub from the main branch, but always push base images to dev repo. ## Test plan <!-- All pull requests REQUIRE a test plan: https://docs.sourcegraph.com/dev/background-information/testing_principles --> - [x] green main-dry-run https://buildkite.com/sourcegraph/sourcegraph/builds/237546 - [x] Full testing of CI pipeline |
||
|---|---|---|
| .. | ||
| BUILD.bazel | ||
| runtype_test.go | ||
| runtype.go | ||