Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

⚠️ CONFLICT! Lineage pull request for: skeleton #119

Open
wants to merge 34 commits into
base: develop
Choose a base branch
from
Open

⚠️ CONFLICT! Lineage pull request for: skeleton #119

wants to merge 34 commits into from
+272 −205

Conversation

cisagovbot
Copy link

@cisagovbot cisagovbot commented Jan 24, 2025
edited by dav3r
Loading

Lineage Pull Request: CONFLICT

Achtung!!!

Lineage has created this pull request to incorporate new changes found in an
upstream repository:

Upstream repository: https://github.com/cisagov/skeleton-packer.git
Remote branch: HEAD

Check the changes in this pull request to ensure they won't cause issues with
your project.

The lineage/skeleton branch has one or more unresolved merge conflicts
that you must resolve before merging this pull request!

How to resolve the conflicts

  1. Take ownership of this pull request by removing any other assignees.

  2. Clone the repository locally, and reapply the merge:

    git clone git@github.com:cisagov/openvpn-packer.git openvpn-packer
cd openvpn-packer
git remote add skeleton https://github.com/cisagov/skeleton-packer.git
git remote set-url --push skeleton no_push
git switch develop
git switch --create lineage/skeleton --track origin/develop
git pull skeleton HEAD
git status

  3. Review the changes displayed by the status command. Fix any conflicts and
    possibly incorrect auto-merges.

  4. After resolving each of the conflicts, add your changes to the
    branch, commit, and push your changes:

    git add .github/workflows/build.yml .github/workflows/prerelease.yml .github/workflows/release.yml README.md ami_arm64.pkr.hcl ami_x86_64.pkr.hcl terraform-post-packer/main.tf version.txt 
git commit
git push --force --set-upstream origin lineage/skeleton

    Note that you may append to the default merge commit message
    that git creates for you, but please do not delete the existing
    content    . It provides useful information about the merge that is
    being performed.

  5. Wait for all the automated tests to pass.

  6. Confirm each item in the "Pre-approval checklist" below.

  7. Remove any of the checklist items that do not apply.

  8. Ensure every remaining checkbox has been checked.

  9. Mark this draft pull request "Ready for review".

✅ Pre-approval checklist

Remove any of the following that do not apply. If you're unsure about
any of these, don't hesitate to ask. We're here to help!

  • ✌️ The conflicts in this pull request have been resolved.
  • All relevant type-of-change labels have been added.
  • All relevant repo and/or project documentation has been updated
    to reflect the changes in this PR.
  • All new and existing tests pass.

✅ Testing checklist

  • Validate that the AMI created by this PR functions correctly in Dev
  • Validate that the AMI created by this PR functions correctly in Staging

✅ Pre-merge checklist

  • Bump build version for dev and staging test builds.
  • Bump build version again for final production (release) build.

✅ Post-merge checklist

Remove any of the following that do not apply.

  • Create a release.

Note

You are seeing this because one of this repository's maintainers has
configured Lineage to open pull requests.

For more information:

🛠 Lineage configurations for this project are stored in .github/lineage.yml

📚 Read more about Lineage

mcdonnnj and others added 30 commits January 6, 2025 15:12
@mcdonnnj
Ensure the bump-version script can bump prereleases
96279e8 
Currently there is a bug in the script's logic that prevents you from
running `./bump-version prerelease` to bump _just_ the prerelease. This
is due to faulty checking logic to ensure expected behavior when
combining bump commands.
@dav3r
Modify backend to use a partial configuration
6f3c9fd 
This lets us avoid hardcoding the bucket name and allows it to be set on a per-environment basis via the -backend-config command line option or other methods.  For details, see: https://developer.hashicorp.com/terraform/language/backend#partial-configuration
@dav3r
Make terraform_state_bucket a required variable and use it to fetch r…
b7438c3 
…emote states

Also, make all remote states use the same environment (no more mixed staging and production states).
@dav3r
Update providers to use a single environment (no more mixed staging a…
e19afba 
…nd production)
@dav3r
Remove production and staging providers when calling ami-build-iam-us…
96cec9f 
…er-tf-module
@dav3r
Temporarily use a testing branch for ami-build-iam-user-tf-module
92948c8
@dav3r
Add *.tfconfig to .gitignore
a531ab9 
This is the extension I chose for our backend config files.
@dav3r
Update instructions in README for creating build users
350187b
@dav3r
Modify build workflow to use the "dev-a" GitHub environment
e3491ba 
Also, assume the newly-renamed and environment-specific build role.
@dav3r
Create AMIs in the build (dev) workflow
ffab069 
Now that we have a suitable dev environment, we want to create AMIs there.  Previously, we did not create AMIs until the prerelease workflow was run.
@dav3r
Use GitHub environments in prerelease and release workflows
39a3c80 
Also, assume the newly-renamed and environment-specific build role.
@dav3r
Bump version from 2.0.0 to 2.0.0+build.1
19df3cf
@jsf9k
Add a comment explaining why we require semver>=3
6dcdd1b
@dav3r
Use proper capitalization
edb4c8d
@dav3r
Update README info related to building AMIs in various environments w…
0b0b805 
…ith GitHub Actions
@dav3r
Modify terraform-post-packer TF backend to use a partial configuration
a8e9d7f 
This lets us avoid hardcoding the bucket name and allows it to be set on a per-environment basis via the -backend-config command line option or other methods.  For details, see: https://developer.hashicorp.com/terraform/language/backend#partial-configuration
@dav3r
Create a variable for the regex to match accounts that the AMIs shoul…
9d25962 
…d be shared with
@dav3r
Clean up and simplify the TF code to share the AMIs with the specifie…
a26caea 
…d accounts

This can be done thanks to our new scheme which no longer has staging and production accounts co-mingled in the same AWS organization.
@dav3r
Update README instructions on how to share AMI with other accounts
765c6e4
@dav3r @jsf9k
Add GitHub_Ref_Name and GitHub_SHA tags to AMIs
2cdb8f6 
Co-authored-by: Jeremy Frasier <jeremy.frasier@gwe.cisa.dhs.gov>
@dav3r @mcdonnnj
Add some missing words in README verbiage
629787e 
Co-authored-by: Nick <50747025+mcdonnnj@users.noreply.github.com>
@dav3r
Placate markdown linter
574cd96 
Co-authored-by: mcdonnnj <mcdonnnj@github.com>
@dav3r
Ensure README headings are sentence case per our style guide
3f6eb6a 
Co-authored-by: mcdonnnj <mcdonnnj@github.com>
@dav3r
Improve verbiage related to development releases
cadd6b4 
Co-authored-by: mcdonnnj <mcdonnnj@github.com>
@dav3r @mcdonnnj
Fix an overlooked heading to be sentence case (per our style guide)
4692966 
Co-authored-by: Nick <50747025+mcdonnnj@users.noreply.github.com>
@dav3r
Merge pull request #392 from cisagov/documentation/add-comment-for-se…
6340e46 
…mver-pin

Add a comment explaining why we require `semver>=3`
@dav3r
Merge pull request #389 from cisagov/bugfix/allow_bump-version_to_bum…
2255e55 
…p_prereleases

Ensure the `bump-version` script can bump pre-releases
@dav3r
Revert "Temporarily use a testing branch for ami-build-iam-user-tf-mo…
f914364 
…dule"

This reverts commit 92948c8.
@dav3r
Bump version from 2.0.0+build.1 to 2.0.0+build.2
bc9ae3c
@dav3r
Merge branch 'develop' into improvement/support-multiple-cool-envs
8e743da
@dav3r dav3r added github-actions Pull requests that update GitHub Actions code ansible Pull requests that update Ansible code packer Pull requests that update Packer code labels Feb 6, 2025
@dav3r
Copy link
Member

dav3r commented Feb 6, 2025

I still have to test the AMI that was created in the dev environment, but for now, this PR is ready for review.

@dav3r dav3r marked this pull request as ready for review February 6, 2025 23:28
@dav3r @jsf9k
Add nullable key to terraform_state_bucket variable
67d4b84 
Co-authored-by: Jeremy Frasier <jeremy.frasier@gwe.cisa.dhs.gov>
felddy
felddy approved these changes Feb 21, 2025
View reviewed changes
Copy link
Member

@felddy felddy left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Looks good. Thanks for answering my questions in person.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@felddy felddy felddy approved these changes

@jsf9k jsf9k jsf9k approved these changes

@dav3r dav3r Awaiting requested review from dav3r dav3r is a code owner

@mcdonnnj mcdonnnj Awaiting requested review from mcdonnnj mcdonnnj is a code owner

Assignees

@dav3r dav3r

Labels
ansible Pull requests that update Ansible code github-actions Pull requests that update GitHub Actions code packer Pull requests that update Packer code upstream update This issue or pull request pulls in upstream updates
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
5 participants
@cisagovbot @dav3r @felddy @jsf9k @mcdonnnj