DEVOPS-1696 - Update Version Bump workflow logic

bitwarden / directory-connector

A tool for syncing a directory (AD, LDAP, Azure, G Suite, Okta) to an organization.

GNU General Public License v3.0

250 stars 82 forks source link

Type of change

[ ] Bug fix
[ ] New feature development
[ ] Tech debt (refactoring, code cleanup, dependency upgrades, etc)
[X] Build/deploy pipeline (DevOps)
[ ] Other

Objective

This PR updates the logic in the Version Bump workflow so that it will check for the existence of a current rc branch, if necessary, before creating the PR to bump the client version. The cut_rc job has been updated to make sure the version bump PR has been merged before cutting the rc branch.

Code changes

.github/workflows/version-bump.yml: See above.

Before you submit

[ ] I have checked for linting errors (npm run lint) (required)
[ ] I have added unit tests where it makes sense to do so (encouraged but not required)
[ ] This change requires a documentation update (notify the documentation team)
[ ] This change has particular deployment requirements (notify the DevOps team)

Severity	Issue	Source File / Package	Checkmarx Insight
	Unpinned Actions Full Length Commit SHA	/version-bump.yml: 88	Pinning an action to a full length commit SHA is currently the only way to use an action as an immutable release. Pinning to a particular SHA helps...

Severity

Issue

Source File / Package

Checkmarx Insight

Unpinned Actions Full Length Commit SHA

/version-bump.yml: 88

Pinning an action to a full length commit SHA is currently the only way to use an action as an immutable release. Pinning to a particular SHA helps...

Severity	Issue	Source File / Package
	Unpinned Actions Full Length Commit SHA	/version-bump.yml: 79

Severity

Issue

Source File / Package

Unpinned Actions Full Length Commit SHA

/version-bump.yml: 79

bitwarden / directory-connector