From 411f7e1a559bf22e3a813c6b13e8c1d0d1449414 Mon Sep 17 00:00:00 2001 From: Lucas Draney <107153866+ldraney@users.noreply.github.com> Date: Mon, 3 Jun 2024 14:32:41 -0600 Subject: [PATCH] #1726 - Deploy to Prod from CD Pipeline (#1828) Co-authored-by: Kyle MacMillan --- .github/workflows/cd-pipeline.yml | 11 ++++++++++- Makefile | 4 +++- 2 files changed, 13 insertions(+), 2 deletions(-) diff --git a/.github/workflows/cd-pipeline.yml b/.github/workflows/cd-pipeline.yml index d9440a70c3..5b8f4629a3 100644 --- a/.github/workflows/cd-pipeline.yml +++ b/.github/workflows/cd-pipeline.yml @@ -105,7 +105,7 @@ jobs: previousVersion: ${{ needs.create-and-post-tag.outputs.previousVersion }} deploy-to-staging: - needs: create-release-notes + needs: [create-release-notes, create-and-post-tag] uses: ./.github/workflows/deploy-release.yml secrets: inherit with: @@ -129,3 +129,12 @@ jobs: with: draftReleaseReference: ${{ needs.create-release-notes.outputs.draftReleaseReference }} + deploy-to-prod: + needs: [publish-release-notes, create-and-post-tag] + uses: ./.github/workflows/deploy-release.yml + secrets: inherit + with: + environment: prod + ref: ${{ needs.create-and-post-tag.outputs.newVersion }} + lambdaDeploy: true + diff --git a/Makefile b/Makefile index e1a59cfbda..4ec33ebde7 100644 --- a/Makefile +++ b/Makefile @@ -32,8 +32,10 @@ install-safety: check-dependencies: install-safety ## Scan dependencies for security vulnerabilities # 12 Dec 2023: 51668 is fixed with >= 2.0.0b1 of SQLAlchemy. Ongoing refactor to upgrade. + # 6 June 2024: 70624 will be resolved with ticket #1794 + # 6 June 2024: 70612 vulnerability found with jinja2 version 3.1.3 - safety check -r poetry.lock --full-report -i 51668 + safety check -r poetry.lock --full-report -i 51668,70624,70612 .PHONY: help \