New: [AEA-0000] - Use pre-built devcontainer #298

Workflow file for this run

.github/workflows/pull_request.yml at c658381

	name: pr

	on:
	pull_request:
	branches: [main]

	env:
	BRANCH_NAME: ${{ github.event.pull_request.head.ref }}

	jobs:
	dependabot-auto-approve-and-merge:
	needs: quality_checks
	uses: ./.github/workflows/dependabot-auto-approve-and-merge.yml
	secrets:
	AUTOMERGE_APP_ID: ${{ secrets.AUTOMERGE_APP_ID }}
	AUTOMERGE_PEM: ${{ secrets.AUTOMERGE_PEM }}
	pr_title_format_check:
	uses: ./.github/workflows/pr_title_check.yml
	get_config_values:
	runs-on: ubuntu-22.04
	outputs:
	tag_format: ${{ steps.load-config.outputs.TAG_FORMAT }}
	devcontainer_version: ${{ steps.load-config.outputs.DEVCONTAINER_VERSION }}
	devcontainer_image: ${{ steps.load-config.outputs.DEVCONTAINER_IMAGE }}
	steps:
	- name: Checkout code
	uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd

	- name: Load config value
Check failure on line 29 in .github/workflows/pull_request.yml View workflow run for this annotation GitHub Actions / pr Invalid workflow file `The workflow is not valid. NHSDigital/eps-common-workflows/.github/workflows/quality-checks-devcontainer.yml@707e7f3d3f14f179482a4cf10d201c1b78c9f8fb (Line: 29, Col: 3): Error calling workflow 'NHSDigital/eps-common-workflows/.github/workflows/verify-runtime-image.yml@707e7f3d3f14f179482a4cf10d201c1b78c9f8fb'. The nested job 'verify_runtime_image' is requesting 'id-token: write', but is only allowed 'id-token: none'.`
	id: load-config
	run: \|
	TAG_FORMAT=$(yq '.TAG_FORMAT' .github/config/settings.yml)
	DEVCONTAINER_IMAGE=$(jq -r '.build.args.IMAGE_NAME' .devcontainer/devcontainer.json)
	DEVCONTAINER_VERSION=$(jq -r '.build.args.IMAGE_VERSION' .devcontainer/devcontainer.json)
	{
	echo "TAG_FORMAT=$TAG_FORMAT"
	echo "DEVCONTAINER_IMAGE=$DEVCONTAINER_IMAGE"
	echo "DEVCONTAINER_VERSION=$DEVCONTAINER_VERSION"
	} >> "$GITHUB_OUTPUT"
	quality_checks:
	uses: ./.github/workflows/quality-checks-devcontainer.yml
	needs: [get_config_values]
	permissions:
	contents: read
	packages: read
	attestations: read
	with:
	runtime_docker_image: "${{ needs.get_config_values.outputs.devcontainer_image }}:githubactions-${{ needs.get_config_values.outputs.devcontainer_version }}"
	secrets:
	SONAR_TOKEN: ${{ secrets.SONAR_TOKEN }}
	tag_release:
	needs: [quality_checks, get_config_values]
	uses: ./.github/workflows/tag-release-devcontainer.yml
	permissions:
	contents: read
	packages: read
	attestations: read
	with:
	dry_run: true
	runtime_docker_image: "${{ needs.get_config_values.outputs.devcontainer_image }}:githubactions-${{ needs.get_config_values.outputs.devcontainer_version }}"
	branch_name: ${{ github.event.pull_request.head.ref }}
	tag_format: ${{ needs.get_config_values.outputs.tag_format }}
	secrets: inherit

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

New: [AEA-0000] - Use pre-built devcontainer #298

Workflow file

New: [AEA-0000] - Use pre-built devcontainer #298

Uh oh!

Workflow file for this run

GitHub Actions / pr