Create internal CI & PR builds #579
Conversation
| extends: | ||
| template: azure-pipelines/MicroBuild.1ES.Unofficial.yml@MicroBuildTemplate | ||
| parameters: | ||
| pool: |
There was a problem hiding this comment.
refresh my memory: the reason that we have to have two of these is because the internal builds don't have outputs that are available to the public, right?
Are there other teams that are doing this in the same way? For example, Roslyn?
I can imagine a world where these builds aren't in this repo at all, instead, we have builds that are in a separate repo that check out the source code from here. But, I don't think that those can easily be triggered from changes in github, right?
There was a problem hiding this comment.
the internal builds don't have outputs that are available to the public, right?
That's correct, and yes, Roslyn has internal builds pulling from their public GitHub repo (eg. https://github.com/dotnet/roslyn/blob/main/azure-pipelines-pr-validation.yml)
We have builds that are in a separate repo that check out the source code from here
Moving the builds to a separate repo would help reduce churn in this repo but might make it more difficult to maintain build hygiene. Having an internal clone of the repo with builds is another option; Perfview has a process like that.
I don't think that those can easily be triggered from changes in github, right?
I think we can do something with GitHub webhooks or actions - maybe something we do in the near future
| # Binaries (Windows & Linux) | ||
| - template: ../jobs/binaries.yaml@self | ||
| parameters: | ||
| IndexSources: true |
Summary
This change introduces internal builds that mirror our public builds in
dev.azure.com/msso that we can remove a cross-org PAT token (scoped to build-artifact-read, used by our test infrastructure) that was getting flagged.Change Log
build_and_package.yamltemplate that all top-level pipeline yaml can consumepr_internal.yamlandci_internal.yamlthat rely on internal templatesTest Methodology
Internal builds