Skip to content

[CI]: Add integration tests template stub #71

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Open
spencrr wants to merge 1 commit into
base: main
Choose a base branch
from
+35 −0
Open

[CI]: Add integration tests template stub #71

Changes from all commits
Commits
Show all changes
1 commit
Select commit
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
35 changes: 35 additions & 0 deletions .pipelines/integration-tests.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,35 @@
# RAMPART core integration tests — PR entrypoint.
#
# Lives in microsoft/RAMPART so the Azure Pipelines GitHub App can
# trigger on PRs to main. All real logic lives in RAMPART-Internal so
# it can be edited without a public-repo PR; this file is a thin
# extends-only shim.
#
# Fork-PR semantics (configured in the ADO pipeline UI, not here):
# - In-repo branch PR → auto-runs (secrets available).
# - Maintainer fork PR → auto-runs (secrets available).
# - External fork PR → waits for `/azp run` comment from a
# write-access user, per
# "Require a team member's comment" setting.
#
# Blast radius if a malicious fork PR slips past `/azp run`: the
# integration MI holds only `Cognitive Services OpenAI User` on a
# single AOAI account. No KV access, no other Azure resources.

trigger: none

pr:
branches:
include:
- main

resources:
repositories:
- repository: internal
type: git
name: RAMPART-Internal
ref: refs/heads/main

extends:
template: pipelines/templates/integration-tests.yml@internal
# rampartAlias defaults to 'self' — self IS RAMPART on this entrypoint.