Skip to content

Commit 7673679

Browse files
committed
Migrate all CI workflows to databricks-protected-runner-group
Replace `ubuntu-latest` GitHub-hosted runners with the `databricks-protected-runner-group` runner group across all workflow jobs to improve CI security posture. Co-authored-by: Isaac
1 parent 349e581 commit 7673679

3 files changed

Lines changed: 12 additions & 4 deletions

File tree

.github/workflows/code-quality-checks.yml

Lines changed: 6 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -13,7 +13,9 @@ permissions:
1313

1414
jobs:
1515
check-linting:
16-
runs-on: ubuntu-latest
16+
runs-on:
17+
group: databricks-protected-runner-group
18+
labels: linux-ubuntu-latest
1719
strategy:
1820
matrix:
1921
python-version: [3.9, "3.10", "3.11", "3.12"]
@@ -66,7 +68,9 @@ jobs:
6668
run: poetry run black --check src
6769

6870
check-types:
69-
runs-on: ubuntu-latest
71+
runs-on:
72+
group: databricks-protected-runner-group
73+
labels: linux-ubuntu-latest
7074
strategy:
7175
matrix:
7276
python-version: [3.9, "3.10", "3.11", "3.12"]

.github/workflows/dco-check.yml

Lines changed: 3 additions & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -8,7 +8,9 @@ permissions:
88

99
jobs:
1010
check:
11-
runs-on: ubuntu-latest
11+
runs-on:
12+
group: databricks-protected-runner-group
13+
labels: linux-ubuntu-latest
1214
steps:
1315
- name: Check for DCO
1416
id: dco-check

.github/workflows/integration.yml

Lines changed: 3 additions & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -12,7 +12,9 @@ permissions:
1212

1313
jobs:
1414
run-e2e-tests:
15-
runs-on: ubuntu-latest
15+
runs-on:
16+
group: databricks-protected-runner-group
17+
labels: linux-ubuntu-latest
1618
environment: azure-prod
1719
env:
1820
DATABRICKS_SERVER_HOSTNAME: ${{ secrets.DATABRICKS_HOST }}

0 commit comments

Comments
 (0)