update workflow

Signed-off-by: wwanarif <[email protected]>

Author: wwanarif

.github/workflows/_build-image-to-registry.yml

@@ -1,7 +1,7 @@
 # Copyright (C) 2024 Intel Corporation
 # SPDX-License-Identifier: Apache-2.0
 
-name: Uses - Build Images to Registry
+name: Call - Build Images to Registry
 permissions: read-all
 on:
   workflow_call:
@@ -14,13 +14,9 @@ on:
         default: "latest"
         required: false
         type: string
-      test_e2e:
-        default: true
-        required: false
-        type: boolean
 
 jobs:
-  build-images:
+  call-build-image-to-registry:
     runs-on: "docker-build-${{ inputs.node }}"
     steps:
       - name: Clean Up Working Directory

.github/workflows/_e2e-test.yml

@@ -1,7 +1,7 @@
 # Copyright (C) 2024 Intel Corporation
 # SPDX-License-Identifier: Apache-2.0
 
-name: Uses - E2E Test
+name: Call - E2E Test
 permissions: read-all
 on:
   workflow_call:
@@ -16,7 +16,7 @@ on:
         type: string
 
 jobs:
-  run-e2e-test:
+  call-e2e-test:
     runs-on: "docker-build-${{ inputs.node }}"
     steps:
       - name: Clean Up Working Directory
@@ -80,9 +80,3 @@ jobs:
           name: playwright-test-results
           path: ${{ github.workspace }}/tests/playwright/test-results
 
-      # - name: Clean Up GenAIStudio Deployment
-      #   run: |
-      #     kubectl delete -f manifests/studio-manifest.yaml || true
-      #     kubectl delete -f manifests/monitoring-manifest.yaml || true
-      #   working-directory: ${{ github.workspace }}/setup-scripts/setup-genai-studio/
-

.github/workflows/manual-docker-build.yml

@@ -1,7 +1,7 @@
 # Copyright (C) 2024 Intel Corporation
 # SPDX-License-Identifier: Apache-2.0
 
-name: Manual Build Images
+name: Manual - Docker Build
 on:
   workflow_dispatch:
     inputs:
@@ -21,7 +21,7 @@ concurrency:
   cancel-in-progress: true
 
 jobs:
-  image-build:
+  manual-docker-build:
     uses: ./.github/workflows/_build-image-to-registry.yml
     with:
       node: ${{ inputs.nodes }}

.github/workflows/manual-docker-scan.yml

@@ -1,7 +1,7 @@
 # Copyright (C) 2024 Intel Corporation
 # SPDX-License-Identifier: Apache-2.0
 
-name: Manual Image BoM and CVE Scan
+name: Manual - Docker Scan (SBOM and CVE)
 on:
   workflow_dispatch:
     inputs:
@@ -36,13 +36,12 @@ jobs:
           sudo rm -rf ${{github.workspace}}/* || true
           # docker system prune -f
 
-  scan-docker:
+  manual-docker-scan:
     needs: clean-workspace
     runs-on: "docker-build-${{ inputs.node }}"
     strategy:
       matrix:
-        # image: ["studio-frontend", "studio-backend", "app-frontend", "app-backend"]
-        image: ["app-backend"]
+        image: ["studio-frontend", "studio-backend", "app-frontend", "app-backend"]
       fail-fast: false
     steps:
       - name: Pull Image
@@ -58,17 +57,17 @@ jobs:
           output-file: ${{ matrix.image }}-sbom-scan.txt
           format: 'spdx-json'
 
-      # - name: Security Scan Container
-      #   uses: aquasecurity/[email protected]
-      #   if: ${{ inputs.trivy_scan }}
-      #   with:
-      #     image-ref: ${{ env.OPEA_IMAGE_REPO }}opea/${{ matrix.image }}:${{ inputs.tag }}
-      #     output: ${{ matrix.image }}-trivy-scan.txt
-      #     format: 'table'
-      #     exit-code: '1'
-      #     ignore-unfixed: true
-      #     vuln-type: 'os,library'
-      #     severity: 'CRITICAL,HIGH'
+      - name: Security Scan Container
+        uses: aquasecurity/[email protected]
+        if: ${{ inputs.trivy_scan }}
+        with:
+          image-ref: ${{ env.OPEA_IMAGE_REPO }}opea/${{ matrix.image }}:${{ inputs.tag }}
+          output: ${{ matrix.image }}-trivy-scan.txt
+          format: 'table'
+          exit-code: '1'
+          ignore-unfixed: true
+          vuln-type: 'os,library'
+          severity: 'CRITICAL,HIGH'
 
       - name: Cleanup
         if: always()
@@ -81,7 +80,7 @@ jobs:
           mv ${{ matrix.image }}-*-scan.txt /tmp/scan-${{ inputs.tag }}-${{ github.run_number }}
 
   upload-artifacts:
-    needs: scan-docker
+    needs: manual-docker-scan
     runs-on: "docker-build-${{ inputs.node }}"
     if: always()
     steps:

.github/workflows/pr-code-scan.yml

@@ -1,7 +1,7 @@
 # Copyright (C) 2024 Intel Corporation
 # SPDX-License-Identifier: Apache-2.0
 
-name: PR Code Scan
+name: PR - Code Scan (Bandit and Hadolint)
 
 on:
   pull_request:
@@ -24,7 +24,7 @@ env:
   CONTAINER_NAME: "code-scan"
 
 jobs:
-  code-scan:
+  pr-code-scan:
     runs-on: ubuntu-latest
     strategy:
       matrix:

.github/workflows/pr-e2e-test.yml

@@ -1,7 +1,7 @@
 # Copyright (C) 2024 Intel Corporation
 # SPDX-License-Identifier: Apache-2.0
 
-name: PR E2E test
+name: PR - E2E test
 
 on:
   pull_request:
@@ -16,9 +16,16 @@ concurrency:
   cancel-in-progress: true
 
 jobs:
-  pr-image-build:
+  pr-build-images:
     uses: ./.github/workflows/_build-image-to-registry.yml
     with:
-      node: gaudi
+      node: xeon
+      tag: ${{ github.event_name == 'workflow_dispatch' && 'latest' || github.event.pull_request.head.sha }}
+    secrets: inherit
+  pr-run-e2e-test:
+    uses: ./.github/workflows/_e2e-test.yml
+    needs: pr-build-images
+    with:
+      node: xeon
       tag: ${{ github.event_name == 'workflow_dispatch' && 'latest' || github.event.pull_request.head.sha }}
     secrets: inherit

.github/workflows/weekly-trellix-scan.yml

@@ -1,7 +1,7 @@
 # Copyright (C) 2024 Intel Corporation
 # SPDX-License-Identifier: Apache-2.0
 
-name: Weekly Trellix Scan
+name: Weekly - Trellix Scan
 
 on:
   workflow_dispatch: