akanealw
eec8c28fb3
Some checks are pending
Go Benchmark / Performance Regression Check (push) Waiting to run
Cerberus Integration / Cerberus Security Stack Integration (push) Waiting to run
Upload Coverage to Codecov / Backend Codecov Upload (push) Waiting to run
Upload Coverage to Codecov / Frontend Codecov Upload (push) Waiting to run
CodeQL - Analyze / CodeQL analysis (go) (push) Waiting to run
CodeQL - Analyze / CodeQL analysis (javascript-typescript) (push) Waiting to run
CrowdSec Integration / CrowdSec Bouncer Integration (push) Waiting to run
Docker Build, Publish & Test / build-and-push (push) Waiting to run
Docker Build, Publish & Test / Security Scan PR Image (push) Blocked by required conditions
Quality Checks / Auth Route Protection Contract (push) Waiting to run
Quality Checks / Codecov Trigger/Comment Parity Guard (push) Waiting to run
Quality Checks / Backend (Go) (push) Waiting to run
Quality Checks / Frontend (React) (push) Waiting to run
Rate Limit integration / Rate Limiting Integration (push) Waiting to run
Security Scan (PR) / Trivy Binary Scan (push) Waiting to run
Supply Chain Verification (PR) / Verify Supply Chain (push) Waiting to run
WAF integration / Coraza WAF Integration (push) Waiting to run
2.9 KiB
Executable File
2.9 KiB
Executable File
Rebase Resolution Plan
Overview
We are resolving conflicts in 4 workflow files during an interactive rebase. The conflicts primarily involve:
- Updates to
workflow_dispatchinputs (addinglatestto description) from the rebase target. - Regression/simplification of
concurrencygroups ine2e-tests.yml(we must keep our robust HEAD version). - A massive duplication of logic ("Determine tag" -> "Pull image") in integration workflows caused by git auto-merge.
- A conflict between "Pull from Registry" (HEAD) vs "Download Artifact" (Incoming) in
e2e-tests.yml(we must keep Registry pull).
File-by-File Instructions
1. .github/workflows/crowdsec-integration.yml
- Conflict Area 1 (Inputs):
- Resolution: Accept the Incoming change for the description (includes
latest). - Action: Update description to
'Docker image tag to test (e.g., pr-123-abc1234, latest)'.
- Resolution: Accept the Incoming change for the description (includes
- Duplication Fix (CRITICAL):
- Issue: The steps "Determine image tag", "Pull Docker image from registry", and "Fallback to artifact download" appear TWICE sequentially.
- Resolution: Delete the FIRST occurrence of this block. Keep the sequence that leads directly into "Validate image SHA".
- Block to Delete: Approximately lines 26-124.
2. .github/workflows/e2e-tests.yml
- Inputs Issue (No marker, but duplicated):
- Issue:
image_taginput appears twice inworkflow_dispatch. - Resolution: Keep the second one (with
latestin description) and delete the first one.
- Issue:
- Conflict Area 2 (Concurrency):
- Resolution: Keep HEAD. It contains the robust concurrency group key (
e2e-${{ github.workflow }}-${{ ... }}) whereas the incoming change reverts to a simpler, less safe one.
- Resolution: Keep HEAD. It contains the robust concurrency group key (
- Conflict Area 3 (Pull vs Download):
- Issue: HEAD uses "Pull Docker image from registry" (Phase 4 strategy). Incoming uses "Download Docker image" (old strategy).
- Resolution: Keep HEAD.
3. .github/workflows/rate-limit-integration.yml
- Conflict Area 1 (Inputs):
- Resolution: Accept Incoming (with
latest).
- Resolution: Accept Incoming (with
- Duplication Fix:
- Issue: Same as CrowdSec. Duplicate logic block.
- Resolution: Delete the FIRST occurrence of the [Determine -> Pull -> Fallback] sequence.
4. .github/workflows/waf-integration.yml
- Conflict Area 1 (Inputs):
- Resolution: Accept Incoming (with
latest).
- Resolution: Accept Incoming (with
- Duplication Fix:
- Issue: Same as CrowdSec. Duplicate logic block.
- Resolution: Delete the FIRST occurrence of the [Determine -> Pull -> Fallback] sequence.
Verification
After applying these fixes, we will verify:
- No conflict markers (
<<<<<<<,=======,>>>>>>>) remain. - No duplicate steps in the flows.
e2e-tests.ymlspecifically retains "Pull Docker image from registry".