From 1995c76196b0c38743a810cd59a0df1ca9d27774 Mon Sep 17 00:00:00 2001 From: Leandro Damascena Date: Tue, 1 Jul 2025 16:30:10 +0100 Subject: [PATCH 1/3] Integrating SSM workflow --- .github/workflows/release-v3.yml | 12 ++++++++++++ .github/workflows/update_ssm.yml | 26 +++++++++++++++++++++++++- 2 files changed, 37 insertions(+), 1 deletion(-) diff --git a/.github/workflows/release-v3.yml b/.github/workflows/release-v3.yml index bd796ed6dca..1a993a6ad6c 100644 --- a/.github/workflows/release-v3.yml +++ b/.github/workflows/release-v3.yml @@ -383,3 +383,15 @@ jobs: script: | const post_release = require('.github/scripts/post_release.js') await post_release({github, context, core}) + + update_ssm: + needs: [seal, release, publish_layer] + permissions: + id-token: write + contents: read + uses: ./.github/workflows/update_ssm.yml + with: + environment: "Prod" + write_latest: true + package_version: ${{ needs.seal.outputs.RELEASE_VERSION }} + layer_version: ${{ inputs.layer_documentation_version }} diff --git a/.github/workflows/update_ssm.yml b/.github/workflows/update_ssm.yml index 7aef2d806e3..d912c36544e 100644 --- a/.github/workflows/update_ssm.yml +++ b/.github/workflows/update_ssm.yml @@ -1,5 +1,4 @@ name: SSM Parameters -run-name: SSM Parameters - Python # SSM Parameters update # @@ -41,6 +40,31 @@ on: type: string required: true + workflow_call: + inputs: + environment: + description: Environment to deploy to + type: string + required: true + + write_latest: + description: Write to the latest path + type: boolean + required: false + default: true + + package_version: + description: Semantic Version of published layer + type: string + required: true + + layer_version: + description: Layer version + type: string + required: true + +run-name: SSM Parameters - Python - Layer version ${{ inputs.layer_version }} - V${{ inputs.package_version }} + permissions: contents: read From 3b7147e262977836ef13bae49b1228e181d88b69 Mon Sep 17 00:00:00 2001 From: Leandro Damascena Date: Tue, 1 Jul 2025 16:37:00 +0100 Subject: [PATCH 2/3] Integrating SSM workflow --- .github/workflows/update_ssm.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/update_ssm.yml b/.github/workflows/update_ssm.yml index d912c36544e..423c17fb9ac 100644 --- a/.github/workflows/update_ssm.yml +++ b/.github/workflows/update_ssm.yml @@ -63,7 +63,7 @@ on: type: string required: true -run-name: SSM Parameters - Python - Layer version ${{ inputs.layer_version }} - V${{ inputs.package_version }} +run-name: SSM Parameters - Python - Layer version ${{ inputs.layer_version }} - v${{ inputs.package_version }} permissions: contents: read From 6ba0bfdca2ca40cdd32480fa38208b7126fbfa57 Mon Sep 17 00:00:00 2001 From: Leandro Damascena Date: Tue, 1 Jul 2025 22:26:02 +0100 Subject: [PATCH 3/3] Addressing Andrea's feedback --- .github/workflows/update_ssm.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/update_ssm.yml b/.github/workflows/update_ssm.yml index 423c17fb9ac..26116099f40 100644 --- a/.github/workflows/update_ssm.yml +++ b/.github/workflows/update_ssm.yml @@ -43,7 +43,7 @@ on: workflow_call: inputs: environment: - description: Environment to deploy to + description: Environment to deploy to, one of `Prod` or `Beta` type: string required: true