chore: GitHub workflow update (#61)

epam · Feb 1, 2024 · 0816e85 · 0816e85
1 parent 502c663
commit 0816e85
Show file tree

Hide file tree

Showing 9 changed files with 36 additions and 22 deletions.
diff --git a/.github/CODEOWNERS b/.github/CODEOWNERS
@@ -0,0 +1,2 @@
+* @vladisavvv
+/.github/ @nepalevov @alexey-ban
diff --git a/.github/ISSUE_TEMPLATE/config.yml b/.github/ISSUE_TEMPLATE/config.yml
@@ -0,0 +1 @@
+blank_issues_enabled: false
diff --git a/.github/pr-title-checker-config.json b/.github/pr-title-checker-config.json
diff --git a/.github/workflows/deploy_dev.yml b/.github/workflows/deploy_dev.yml
@@ -6,11 +6,11 @@ on:
 jobs:
   gitlab-dev-deploy:
     if: ${{ github.event.registry_package.package_version.container_metadata.tag.name == 'development' }}
-    uses: epam/ai-dial-ci/.github/workflows/deploy-development.yml@1.1.0
+    uses: epam/ai-dial-ci/.github/workflows/deploy-development.yml@1.3.1
     with:
-      gitlab-project-id: '1824'
-      gitlab-project-ref: 'master'
+      gitlab-project-id: "1824"
+      gitlab-project-ref: "master"
     secrets:
       DEPLOY_HOST: ${{ secrets.DEPLOY_HOST }}
       DEPLOY_ACCESS_TOKEN: ${{ secrets.DEPLOY_ACCESS_TOKEN }}
-      DEPLOY_TRIGGER_TOKEN: ${{ secrets.DEPLOY_TRIGGER_TOKEN }}
+      DEPLOY_TRIGGER_TOKEN: ${{ secrets.DEPLOY_TRIGGER_TOKEN }}
diff --git a/.github/workflows/e2e_tests.yml b/.github/workflows/e2e_tests.yml
@@ -4,7 +4,7 @@ on:
 jobs:
   e2e-tests:
     if: ${{ github.event.registry_package.package_version.container_metadata.tag.name == 'development' }}
-    uses: epam/ai-dial-ci/.github/workflows/e2e-test.yml@1.1.0
+    uses: epam/ai-dial-ci/.github/workflows/e2e-test.yml@1.3.1
     with:
       gitlab-project-id: "1843"
     secrets:

diff --git a/.github/workflows/pr-title-check.yml b/.github/workflows/pr-title-check.yml
@@ -0,0 +1,14 @@
+name: "Validate PR title"
+
+on:
+  pull_request_target:
+    types:
+      - opened
+      - edited
+      - synchronize
+
+jobs:
+  pr-title-check:
+    uses: epam/ai-dial-ci/.github/workflows/[email protected]
+    secrets:
+      ACTIONS_BOT_TOKEN: ${{ secrets.ACTIONS_BOT_TOKEN }}
diff --git a/.github/workflows/pr_check_tests.yml b/.github/workflows/pr_check_tests.yml
@@ -8,7 +8,7 @@ on:
 
 jobs:
   run_tests:
-    uses: epam/ai-dial-ci/.github/workflows/test_python_docker.yml@1.1.0
+    uses: epam/ai-dial-ci/.github/workflows/test_python_docker.yml@1.3.1
     with:
       bypass_checks: false
       python_version: 3.11

diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml
@@ -2,12 +2,12 @@ name: Release version
 
 on:
   push:
-    branches: [ development, release-* ]
+    branches: [development, release-*]
 
 env:
   IMAGE_NAME: ${{ github.repository }}
 
 jobs:
   release:
-    uses: epam/ai-dial-ci/.github/workflows/publish_python_docker.yml@1.1.0
+    uses: epam/ai-dial-ci/.github/workflows/publish_python_docker.yml@1.3.1
     secrets: inherit
diff --git a/SECURITY.md b/SECURITY.md
@@ -0,0 +1,11 @@
+# Reporting Security Issues
+
+We take all security reports seriously. We appreciate your efforts to responsibly disclose your findings and will make every effort to acknowledge your contributions.
+
+⚠️ Please do *not* file GitHub issues for security vulnerabilities as they are public! ⚠️
+
+To report a security issue, please use the GitHub Security Advisory ["Report a Vulnerability"](https://github.com/epam/ai-dial-adapter-openai/security/advisories/new) tab. Tip: In this form, only the title and description are mandatory.
+
+We will send a response indicating the next steps in handling your report. After the initial reply to your report, we will keep you informed of the progress toward a fix and full announcement and may ask for additional information or guidance.
+
+When we receive such reports, we will investigate and subsequently address any potential vulnerabilities as quickly as possible.