Skip to content

chore: Downmerge main to dev#760

Merged
Avijit-Microsoft merged 17 commits intodevfrom
main
Mar 9, 2026
Merged

chore: Downmerge main to dev#760
Avijit-Microsoft merged 17 commits intodevfrom
main

Conversation

@Ragini-Microsoft
Copy link
Collaborator

@Ragini-Microsoft Ragini-Microsoft commented Mar 9, 2026

Purpose

This pull request introduces several improvements and cleanups to the GitHub Actions workflows for deployment, focusing on modernizing Azure authentication, simplifying runner options, and removing legacy files. The most significant changes are the migration to OIDC-based Azure authentication, the removal of the deprecated "Devcontainer" runner option, and the deletion of the obsolete Windows deployment workflow.

Modernization of Azure authentication:

  • Updated multiple workflows (docker-build.yml, job-cleanup-deployment.yml, job-deploy-linux.yml, deploy-v2.yml) to use OIDC-based Azure authentication via the azure/login@v2 action, replacing service principal logins. This improves security and aligns with best practices. [1] [2] [3] [4] [5]
  • Added id-token: write permission where required for OIDC authentication. [1] [2]

Simplification of runner options:

  • Removed the "Devcontainer" runner option from all relevant workflow inputs and validation logic, leaving only "codespace" and "Local" as valid options. This affects deploy-orchestrator.yml and the renamed deploy-v2.yml. [1] [2] [3] [4]

Workflow cleanups and environment improvements:

  • Added environment: production to several jobs for improved environment tracking and compliance. [1] [2] [3]
  • Removed unnecessary workflow permissions from deploy-orchestrator.yml, job-cleanup-deployment.yml, and job-deploy-linux.yml for cleaner configuration. [1] [2] [3]

Removal of obsolete files:

  • Deleted the entire .github/workflows/deploy-windows.yml workflow, which included extensive input validation and deployment logic for Windows environments, as it is no longer needed.

Ownership and test logic updates:

  • Added a default CODEOWNERS assignment for the repository.
  • Re-enabled E2E tests in deploy-orchestrator.yml by restoring the original conditional logic.

These changes collectively modernize the CI/CD pipeline, reduce complexity, and improve security and maintainability.

Does this introduce a breaking change?

  • Yes
  • No

Golden Path Validation

  • I have tested the primary workflows (the "golden path") to ensure they function correctly without errors.

Deployment Validation

  • I have validated the deployment process successfully and all services are running as expected with this change.

What to Check

Verify that the following are valid

  • ...

Other Information

Vamshi-Microsoft and others added 17 commits February 20, 2026 11:13
@Vamshi-Microsoft
Migrated GitHub Actions authentication from client secrets to OIDC an…
f435ed2 
…d Consolidated Ubuntu & Windows workflows into a single parameterized pipeline
@Vamshi-Microsoft
refactor: update ACR name extraction logic in deployment workflows fo…
cd2c7a2 
…r Linux and Windows
@Vamshi-Microsoft
chore: temporarily disable send-notification job in deployment orches…
046bd35 
…trator
@Vamshi-Microsoft
Renamed the deployment workflow
3f15d65
@Roopan-Microsoft
Merge pull request #750 from microsoft/dev
89a28a0 
chore: Dev to main
@Ragini-Microsoft
update subprocess calls in script
a0ebe3d
@Roopan-Microsoft
Merge pull request #751 from microsoft/rc-psl-vulnerabilityfix
afad190 
fix: update subprocess calls in script
@Avijit-Microsoft
Add CODEOWNERS file with default owners
ec64abc
@Roopan-Microsoft
Merge pull request #756 from microsoft/ag-codeowners
c520b82 
chore: Add CODEOWNERS file with default owners
@Vamshi-Microsoft
Merge branch 'main' into psl-oidc
a483104
@Vamshi-Microsoft
Integrate Smoke testing within pipeline
ba1908b
@Vamshi-Microsoft
Add pytest markers for golden path tests and update test case
2ce4b6e
@Vamshi-Microsoft
Update paths for E2E test
7257dbc
@Vamshi-Microsoft
Renamed deployment pipeline for Testing
47a4263
@Vamshi-Microsoft
Update test report upload step to include screenshots
b08b4e5
@Vamshi-Microsoft
renamed deployment Pipeline
608b9aa
@Prajwal-Microsoft
Merge pull request #730 from microsoft/psl-oidc
06d7cda 
ci: Migrated GitHub Actions authentication from client secrets to OIDC and Integrated Smoke Testing Automation into the pipeline
@Avijit-Microsoft Avijit-Microsoft merged commit c7fd67f into dev Mar 9, 2026
46 of 47 checks passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@Avijit-Microsoft Avijit-Microsoft Avijit-Microsoft approved these changes

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

7 participants

@Ragini-Microsoft @Avijit-Microsoft @Prajwal-Microsoft @Ritesh-Microsoft @Prachig-Microsoft @Vamshi-Microsoft @Roopan-Microsoft