diff --git a/.github/workflows/e2e-action-commit-push.yml b/.github/workflows/e2e-action-commit-push.yml index 9291b6a..1f26f4f 100644 --- a/.github/workflows/e2e-action-commit-push.yml +++ b/.github/workflows/e2e-action-commit-push.yml @@ -47,6 +47,14 @@ jobs: ;; esac + - name: Enforce organization caller for reusable workflow + if: ${{ github.event_name == 'workflow_call' }} + run: | + if [ "${{ github.repository_owner }}" != "devops-infra" ]; then + echo "This reusable workflow can only be called by devops-infra repositories." + exit 1 + fi + basic-commit: name: Basic commit and push to new branch needs: [preflight] diff --git a/.github/workflows/e2e-action-container-structure-test.yml b/.github/workflows/e2e-action-container-structure-test.yml index 695ab5a..60ffde6 100644 --- a/.github/workflows/e2e-action-container-structure-test.yml +++ b/.github/workflows/e2e-action-container-structure-test.yml @@ -47,6 +47,14 @@ jobs: ;; esac + - name: Enforce organization caller for reusable workflow + if: ${{ github.event_name == 'workflow_call' }} + run: | + if [ "${{ github.repository_owner }}" != "devops-infra" ]; then + echo "This reusable workflow can only be called by devops-infra repositories." + exit 1 + fi + text-output: name: Basic test with text output format needs: [preflight] diff --git a/.github/workflows/e2e-action-format-hcl.yml b/.github/workflows/e2e-action-format-hcl.yml index a8b8f8e..535d9ee 100644 --- a/.github/workflows/e2e-action-format-hcl.yml +++ b/.github/workflows/e2e-action-format-hcl.yml @@ -47,6 +47,14 @@ jobs: ;; esac + - name: Enforce organization caller for reusable workflow + if: ${{ github.event_name == 'workflow_call' }} + run: | + if [ "${{ github.repository_owner }}" != "devops-infra" ]; then + echo "This reusable workflow can only be called by devops-infra repositories." + exit 1 + fi + format-check-clean-files: name: Check mode on already-formatted files passes needs: [preflight] diff --git a/.github/workflows/e2e-action-pull-request.yml b/.github/workflows/e2e-action-pull-request.yml index f76cb34..a318343 100644 --- a/.github/workflows/e2e-action-pull-request.yml +++ b/.github/workflows/e2e-action-pull-request.yml @@ -49,6 +49,14 @@ jobs: ;; esac + - name: Enforce organization caller for reusable workflow + if: ${{ github.event_name == 'workflow_call' }} + run: | + if [ "${{ github.repository_owner }}" != "devops-infra" ]; then + echo "This reusable workflow can only be called by devops-infra repositories." + exit 1 + fi + basic-pull-request: name: Basic pull request creation needs: [preflight] diff --git a/.github/workflows/e2e-action-template-action.yml b/.github/workflows/e2e-action-template-action.yml index cfd14ae..8020a71 100644 --- a/.github/workflows/e2e-action-template-action.yml +++ b/.github/workflows/e2e-action-template-action.yml @@ -47,6 +47,14 @@ jobs: ;; esac + - name: Enforce organization caller for reusable workflow + if: ${{ github.event_name == 'workflow_call' }} + run: | + if [ "${{ github.repository_owner }}" != "devops-infra" ]; then + echo "This reusable workflow can only be called by devops-infra repositories." + exit 1 + fi + template-action-input-output: name: Validate template-action input/output contract needs: [preflight] diff --git a/.github/workflows/e2e-action-terraform-copy-vars.yml b/.github/workflows/e2e-action-terraform-copy-vars.yml index bad2d01..3fdeb8d 100644 --- a/.github/workflows/e2e-action-terraform-copy-vars.yml +++ b/.github/workflows/e2e-action-terraform-copy-vars.yml @@ -47,6 +47,14 @@ jobs: ;; esac + - name: Enforce organization caller for reusable workflow + if: ${{ github.event_name == 'workflow_call' }} + run: | + if [ "${{ github.repository_owner }}" != "devops-infra" ]; then + echo "This reusable workflow can only be called by devops-infra repositories." + exit 1 + fi + basic-copy-vars: name: Copy variables from central file to modules needs: [preflight] diff --git a/.github/workflows/e2e-action-terraform-validate.yml b/.github/workflows/e2e-action-terraform-validate.yml index f9d9b48..f24a9f1 100644 --- a/.github/workflows/e2e-action-terraform-validate.yml +++ b/.github/workflows/e2e-action-terraform-validate.yml @@ -47,6 +47,14 @@ jobs: ;; esac + - name: Enforce organization caller for reusable workflow + if: ${{ github.event_name == 'workflow_call' }} + run: | + if [ "${{ github.repository_owner }}" != "devops-infra" ]; then + echo "This reusable workflow can only be called by devops-infra repositories." + exit 1 + fi + validate-basic: name: Validate valid Terraform configuration needs: [preflight] diff --git a/.github/workflows/e2e-action-tflint.yml b/.github/workflows/e2e-action-tflint.yml index c152808..5f77477 100644 --- a/.github/workflows/e2e-action-tflint.yml +++ b/.github/workflows/e2e-action-tflint.yml @@ -47,6 +47,14 @@ jobs: ;; esac + - name: Enforce organization caller for reusable workflow + if: ${{ github.event_name == 'workflow_call' }} + run: | + if [ "${{ github.repository_owner }}" != "devops-infra" ]; then + echo "This reusable workflow can only be called by devops-infra repositories." + exit 1 + fi + basic-tflint: name: Basic TFLint on valid Terraform files needs: [preflight] diff --git a/img/triglav.png b/img/triglav.png new file mode 100644 index 0000000..1cfcad4 Binary files /dev/null and b/img/triglav.png differ diff --git a/triglav.jpeg b/triglav.jpeg deleted file mode 100644 index d671fd2..0000000 Binary files a/triglav.jpeg and /dev/null differ