e2e-awskms-on-pr.yml

name: AWS KMS e2e on pr

on:
  pull_request:
    branches: [ main, v2* ]
  workflow_dispatch:
  
permissions:
  contents: read
  pull-requests: read
  actions: read
  security-events: write
  packages: write

concurrency:
  group: ci-e2e-awskms-${{ github.ref }}-1
  cancel-in-progress: true

jobs:
  golangci-lint:
    uses: ./.github/workflows/_gocilint.yml
    with:
      project: providers/awskms
  
  gosec-scanning:
    uses: ./.github/workflows/_gosecscan.yml
    needs: golangci-lint
    
  image-build:
    uses: ./.github/workflows/_docker-build.yml
    with:
      registry: ghcr.io
      imageName: ${{ github.repository }}
      imageTagPrefix: awskms
      project: providers/awskms
    needs: gosec-scanning

  e2e-1_22:
    uses: ./.github/workflows/_e2e-test.yml
    with:
      provider: awskms
      kubever: "1.22"
    needs: image-build

  e2e-1_23:
    uses: ./.github/workflows/_e2e-test.yml
    with:
      provider: awskms
      kubever: "1.23"
    needs: image-build

  e2e-1_24:
    uses: ./.github/workflows/_e2e-test.yml
    with:
      provider: awskms
      kubever: "1.24"
    needs: image-build

  image-vulnerability-scan:
    uses: ./.github/workflows/_trivy.yml
    with:
      registry: ghcr.io
      imageName: ${{ github.repository }}
      imageTagPrefix: awskms
    needs: image-build