Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

feat: add cve-query step #5455

Open
wants to merge 4 commits into
base: ccoa/2024-2025
Choose a base branch
from
Open

feat: add cve-query step #5455

wants to merge 4 commits into from

Conversation

jason1028kr
Copy link
Collaborator

@jason1028kr jason1028kr commented Dec 19, 2024
edited
Loading

What type of PR is this?
/kind feature

What this PR does / why we need it:
Pipeline changes for adding blocking criteria step

  • SKIP_CVE_QUERY, QUERY_POOL env variables to specify runs/pools.
  • trigger weekly release build from test build completion.
  • running kusto query on a vm built on generic vhd image (could do this on 1es pool, but the code will eventually sit next to scanning when TME daily build is implemented. so decided on an implementation that mirrors scanning step).

Not sure it's worth it to change current weekly release build behavior to depend on test build, for this block functionality. Might be best to make this wait until daily build feature is done.

Which issue(s) this PR fixes:

Fixes #

Requirements:

Special notes for your reviewer:

Release note:

none

@jason1028kr jason1028kr force-pushed the jasonjung/test-query-0 branch from dc31001 to eaf364d Compare December 25, 2024 21:31
@jason1028kr jason1028kr force-pushed the jasonjung/test-query-0 branch from 8d8fa9d to 177c242 Compare December 27, 2024 21:03
@jason1028kr jason1028kr marked this pull request as ready for review December 27, 2024 21:24
@jason1028kr jason1028kr force-pushed the jasonjung/test-query-0 branch from ffba85b to 19f43fa Compare December 27, 2024 21:26
@jason1028kr jason1028kr force-pushed the jasonjung/test-query-0 branch from 19f43fa to 66a1058 Compare January 5, 2025 01:55
@jason1028kr jason1028kr force-pushed the jasonjung/test-query-0 branch from c014aec to 3751d55 Compare January 8, 2025 00:14
cameronmeissner
cameronmeissner reviewed Jan 8, 2025
View reviewed changes
.pipelines/.vsts-vhd-builder-release.yaml
condition: ne(variables.SKIP_CVE_QUERY, 'true')
jobs:
- job: cveQuery
pool: $(QUERY_POOL_NAME)
Copy link
Collaborator

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

if this is coming from a variable group can you explicitly declare the group at the top of the yaml to minimize confusion?

@cameronmeissner
Copy link
Collaborator

Not sure it's worth it to change current weekly release build behavior to depend on test build, for this block functionality. Might be best to make this wait until daily build feature is done. I'd also prefer to hold off on this for now until we've ironed out any potential kinks.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@cameronmeissner cameronmeissner cameronmeissner left review comments

@juan-lee juan-lee Awaiting requested review from juan-lee juan-lee is a code owner

@UtheMan UtheMan Awaiting requested review from UtheMan UtheMan is a code owner

@ganeshkumarashok ganeshkumarashok Awaiting requested review from ganeshkumarashok ganeshkumarashok is a code owner

@anujmaheshwari1 anujmaheshwari1 Awaiting requested review from anujmaheshwari1 anujmaheshwari1 is a code owner

@AlisonB319 AlisonB319 Awaiting requested review from AlisonB319 AlisonB319 is a code owner

@Devinwong Devinwong Awaiting requested review from Devinwong Devinwong is a code owner

@lilypan26 lilypan26 Awaiting requested review from lilypan26 lilypan26 is a code owner

@AbelHu AbelHu Awaiting requested review from AbelHu AbelHu is a code owner

@junjiezhang1997 junjiezhang1997 Awaiting requested review from junjiezhang1997 junjiezhang1997 is a code owner

@djsly djsly Awaiting requested review from djsly djsly is a code owner

@phealy phealy Awaiting requested review from phealy phealy is a code owner

@r2k1 r2k1 Awaiting requested review from r2k1 r2k1 is a code owner

@timmy-wright timmy-wright Awaiting requested review from timmy-wright timmy-wright is a code owner

@zachary-bailey zachary-bailey Awaiting requested review from zachary-bailey zachary-bailey is a code owner

At least 1 approving review is required to merge this pull request.

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@jason1028kr @cameronmeissner