From 9b770336c176e97d025894f1b77df816bf773bc1 Mon Sep 17 00:00:00 2001 From: Himanshu Singh Date: Tue, 7 Oct 2025 13:34:52 +0200 Subject: [PATCH 1/2] chore: disable snyk vuln ticket generation --- .../actions/test-and-build/action.yaml | 55 ++++++++++--------- 1 file changed, 28 insertions(+), 27 deletions(-) diff --git a/.github/workflows/actions/test-and-build/action.yaml b/.github/workflows/actions/test-and-build/action.yaml index e3d6b39e3..c59ab1d73 100644 --- a/.github/workflows/actions/test-and-build/action.yaml +++ b/.github/workflows/actions/test-and-build/action.yaml @@ -32,7 +32,7 @@ runs: # https://github.com/nodejs/node-gyp/issues/2869 - uses: actions/setup-python@v5 with: - python-version: '3.11' + python-version: "3.11" - name: Run node-gyp bug workaround script run: | @@ -118,30 +118,31 @@ runs: run: | npm run snyk-test > /dev/null 2>&1 - - name: Create Jira Tickets - if: > - runner.os == 'Linux' && - ( - github.event_name == 'push' && github.ref == 'refs/heads/main' || - github.event_name == 'workflow_dispatch' || - github.event_name == 'schedule' - ) - shell: bash - env: - JIRA_API_TOKEN: ${{ inputs.JIRA_API_TOKEN }} - JIRA_BASE_URL: "https://jira.mongodb.org" - JIRA_PROJECT: "VSCODE" - JIRA_VULNERABILITY_BUILD_INFO: "- [GitHub Run|https://github.com/mongodb-js/vscode/actions/runs/${{github.run_id}}/jobs/${{github.job}}]" - run: | - npm run create-vulnerability-tickets > /dev/null + # TODO(VSCODE-706): Fix Snyk vuln ticket generation + # - name: Create Jira Tickets + # if: > + # runner.os == 'Linux' && + # ( + # github.event_name == 'push' && github.ref == 'refs/heads/main' || + # github.event_name == 'workflow_dispatch' || + # github.event_name == 'schedule' + # ) + # shell: bash + # env: + # JIRA_API_TOKEN: ${{ inputs.JIRA_API_TOKEN }} + # JIRA_BASE_URL: "https://jira.mongodb.org" + # JIRA_PROJECT: "VSCODE" + # JIRA_VULNERABILITY_BUILD_INFO: "- [GitHub Run|https://github.com/mongodb-js/vscode/actions/runs/${{github.run_id}}/jobs/${{github.job}}]" + # run: | + # npm run create-vulnerability-tickets > /dev/null - - name: Generate Vulnerability Report (Fail on >= High) - if: runner.os == 'Linux' - continue-on-error: ${{ github.event_name == 'pull_request' }} - shell: bash - run: | - # The standard output is suppressed since Github Actions logs are - # available for everyone with read access to the repo, which is everyone that is - # logged in for public repos. - # This command is only here to fail on failures for `main` and tags. - npm run generate-vulnerability-report > /dev/null + # - name: Generate Vulnerability Report (Fail on >= High) + # if: runner.os == 'Linux' + # continue-on-error: ${{ github.event_name == 'pull_request' }} + # shell: bash + # run: | + # # The standard output is suppressed since Github Actions logs are + # # available for everyone with read access to the repo, which is everyone that is + # # logged in for public repos. + # # This command is only here to fail on failures for `main` and tags. + # npm run generate-vulnerability-report > /dev/null From f01842f02d81e2fca4fb756677f002958688ef1f Mon Sep 17 00:00:00 2001 From: Himanshu Singh Date: Tue, 7 Oct 2025 13:37:37 +0200 Subject: [PATCH 2/2] Update .github/workflows/actions/test-and-build/action.yaml Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com> --- .github/workflows/actions/test-and-build/action.yaml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/actions/test-and-build/action.yaml b/.github/workflows/actions/test-and-build/action.yaml index c59ab1d73..b847cb0e0 100644 --- a/.github/workflows/actions/test-and-build/action.yaml +++ b/.github/workflows/actions/test-and-build/action.yaml @@ -32,7 +32,7 @@ runs: # https://github.com/nodejs/node-gyp/issues/2869 - uses: actions/setup-python@v5 with: - python-version: "3.11" + python-version: '3.11' - name: Run node-gyp bug workaround script run: |