chore(github): check all checks have passed

2025-12-19 05:17:47 +00:00 · 2025-10-29 15:37:12 +01:00
4 changed files with 71 additions and 0 deletions
--- a/.github/workflows/api-pull-request.yml
+++ b/.github/workflows/api-pull-request.yml
@@ -253,3 +253,22 @@ jobs:
          image-tag: ${{ github.sha }}
          fail-on-critical: 'false'
          severity: 'CRITICAL'
+
+  # This job aggregates all the jobs above and is the one that should be marked as required in branch protection
+  api-checks-pass:
+    if: github.repository == 'prowler-cloud/prowler' && always()
+    needs:
+      - check-changes
+      - code-quality
+      - security-scans
+      - tests
+      - dockerfile-lint
+      - container-build-and-scan
+    runs-on: ubuntu-latest
+    timeout-minutes: 5
+    steps:
+      - name: Decide whether all checks passed
+        uses: re-actors/alls-green@05ac9388f0aebcb5727afa17fcccfecd6f8ec5fe # v1.2.2
+        with:
+          allowed-skips: code-quality, security-scans, tests, dockerfile-lint, container-build-and-scan
+          jobs: ${{ toJSON(needs) }}
--- a/.github/workflows/mcp-pull-request.yml
+++ b/.github/workflows/mcp-pull-request.yml
@@ -103,3 +103,19 @@ jobs:
          image-tag: ${{ github.sha }}
          fail-on-critical: 'false'
          severity: 'CRITICAL'
+
+  # This job aggregates all the jobs above and is the one that should be marked as required in branch protection
+  mcp-checks-pass:
+    if: github.repository == 'prowler-cloud/prowler' && always()
+    needs:
+      - check-changes
+      - dockerfile-lint
+      - container-build-and-scan
+    runs-on: ubuntu-latest
+    timeout-minutes: 5
+    steps:
+      - name: Decide whether all checks passed
+        uses: re-actors/alls-green@05ac9388f0aebcb5727afa17fcccfecd6f8ec5fe # v1.2.2
+        with:
+          allowed-skips: dockerfile-lint, container-build-and-scan
+          jobs: ${{ toJSON(needs) }}
--- a/.github/workflows/sdk-pull-request.yml
+++ b/.github/workflows/sdk-pull-request.yml
@@ -516,3 +516,22 @@ jobs:
          image-tag: ${{ github.sha }}
          fail-on-critical: 'false'
          severity: 'CRITICAL'
+
+  # This job aggregates all the jobs above and is the one that should be marked as required in branch protection
+  sdk-checks-pass:
+    if: github.repository == 'prowler-cloud/prowler' && always()
+    needs:
+      - check-changes
+      - code-quality
+      - security-scans
+      - tests
+      - dockerfile-lint
+      - container-build-and-scan
+    runs-on: ubuntu-latest
+    timeout-minutes: 5
+    steps:
+      - name: Decide whether all checks passed
+        uses: re-actors/alls-green@05ac9388f0aebcb5727afa17fcccfecd6f8ec5fe # v1.2.2
+        with:
+          allowed-skips: code-quality, security-scans, tests, dockerfile-lint, container-build-and-scan
+          jobs: ${{ toJSON(needs) }}
--- a/.github/workflows/ui-pull-request.yml
+++ b/.github/workflows/ui-pull-request.yml
@@ -139,3 +139,20 @@ jobs:
          image-tag: ${{ github.sha }}
          fail-on-critical: 'false'
          severity: 'CRITICAL'
+
+  # This job aggregates all the jobs above and is the one that should be marked as required in branch protection
+  ui-checks-pass:
+    if: github.repository == 'prowler-cloud/prowler' && always()
+    needs:
+      - check-changes
+      - code-quality-and-build
+      - dockerfile-lint
+      - container-build-and-scan
+    runs-on: ubuntu-latest
+    timeout-minutes: 5
+    steps:
+      - name: Decide whether all checks passed
+        uses: re-actors/alls-green@05ac9388f0aebcb5727afa17fcccfecd6f8ec5fe # v1.2.2
+        with:
+          allowed-skips: code-quality-and-build, dockerfile-lint, container-build-and-scan
+          jobs: ${{ toJSON(needs) }}