Azure
diff --git a/‎.github/package-lock.json
+17-17 b/‎.github/package-lock.json
+17-17
diff --git a/‎.github/workflows/_reusable-verify-run-status.yaml
+42 b/‎.github/workflows/_reusable-verify-run-status.yaml
+42
diff --git a/‎.github/workflows/avocado.yml
+38 b/‎.github/workflows/avocado.yml
+38
diff --git a/‎.github/workflows/post-apiview.yml
+30 b/‎.github/workflows/post-apiview.yml
+30
diff --git a/‎.github/workflows/sdk-breaking-change-labels.yaml
+5-1 b/‎.github/workflows/sdk-breaking-change-labels.yaml
+5-1
diff --git a/‎.github/workflows/src/context.js
+65-19 b/‎.github/workflows/src/context.js
+65-19
diff --git a/‎.github/workflows/src/retries.js
+56 b/‎.github/workflows/src/retries.js
+56
@@ -0,0 +1,42 @@
+# Prefix with "~" to sort last in Actions list
+name: ~Templates - Verify Run Status
+
+on:
+  workflow_call:
+    inputs:
+      check_run_name:
+        description: Name of the check run to verify
+        required: true
+        type: string
+      workflow_name:
+        description: Name of the workflow to verify
+        required: true
+        type: string
+
+permissions:
+  checks: read
+  contents: read
+
+jobs:
+  check-run-status:
+    if: |
+      (github.event_name == 'workflow_run') || 
+      (github.event_name == 'check_suite' && github.event.check_suite.app.name == 'openapi-pipeline-app') || 
+      (github.event_name == 'check_run' && github.event.check_run.name == inputs.check_run_name)
+    runs-on: ubuntu-24.04
+
+    steps:
+      - uses: actions/checkout@v4
+        with:
+          sparse-checkout: |
+            .github
+
+      - name: Verify matching status
+        uses: actions/github-script@v7
+        with:
+          script: |
+            const { verifyRunStatus } = await import('${{ github.workspace }}/.github/workflows/src/verify-run-status.js');
+            return await verifyRunStatus({ github, context, core });
+        env:
+          CHECK_RUN_NAME: ${{ inputs.check_run_name }}
+          WORKFLOW_NAME: ${{ inputs.workflow_name }}
@@ -0,0 +1,38 @@
+name: "[TEST-IGNORE] Swagger Avocado"
+
+on: pull_request
+
+permissions:
+  contents: read
+
+jobs:
+  avocado:
+    name: "[TEST-IGNORE] Swagger Avocado"
+
+    runs-on: ubuntu-24.04
+
+    steps:
+      - uses: actions/checkout@v4
+        with:
+          # Must include all branches, for git branch logic in Avocado to work correctly
+          fetch-depth: 0
+
+      - name: Setup Node and install deps
+        uses: ./.github/actions/setup-node-install-deps
+
+      - name: Run Avocado
+        run: |
+          npm exec --no avocado \
+          --excludePaths \
+            "/common-types/" \
+            "/scenarios/" \
+            "/package.json" \
+            "/package-lock.json" \
+            "/cadl/examples/" \
+          --includePaths \
+            "data-plane" \
+            "resource-manager"
+        env:
+          # Tells Avocado to analyze the files changed between the PR head (default checkout)
+          # and the PR base branch.
+          SYSTEM_PULLREQUEST_TARGETBRANCH: ${{ github.event.pull_request.base.ref }}
@@ -0,0 +1,30 @@
+name: After APIView
+
+on:
+  check_run:
+    types: [completed]
+    
+permissions:
+  pull-requests: write
+  contents: read
+
+jobs:
+  post-apiview:
+    name: After APIView
+    runs-on: ubuntu-24.04
+    if: |
+      github.event.check_run.check_suite.app.name == 'Azure Pipelines' && (
+      contains(github.event.check_run.name, 'APIView') ||
+      contains(github.event.check_run.name, 'SDK Generation') ||
+      contains(github.event.check_run.name, 'SDK azure-sdk-for-') )
+    steps:
+      - name: Checkout
+        uses: actions/checkout@v4
+        with:
+          sparse-checkout: 'eng/common'
+    
+      - name: Create APIView Comment on PR
+        run: |
+          . "eng/common/scripts/Helpers/ApiView-Helpers.ps1"
+          Set-ApiViewCommentForRelatedIssues -HeadCommitish ${{ github.event.check_run.head_sha }} -AuthToken ${{ secrets.GITHUB_TOKEN }}
+        shell: pwsh
@@ -9,7 +9,11 @@ permissions:
 
 jobs:
   sdk-breaking-change-labels:
-    if: ${{ contains(github.event.check_run.name, 'SDK Generation') && github.event.check_run.check_suite.app.name == 'Azure Pipelines'}}
+    # Only run this job when the check run is from Azure Pipelines SDK Generation job in the azure-sdk/public(id: 29ec6040-b234-4e31-b139-33dc4287b756) project
+    if: |
+      github.event.check_run.check_suite.app.name == 'Azure Pipelines' &&
+      contains(github.event.check_run.name, 'SDK Generation') &&
+      endsWith(github.event.check_run.external_id, '29ec6040-b234-4e31-b139-33dc4287b756')
     name: SDK Breaking Change Labels (Preview)
     runs-on: ubuntu-24.04
     steps:
 
@@ -130,14 +130,22 @@ export async function extractInputs(github, context, core) {
         core.info(
           `listPullRequestsAssociatedWithCommit(${head_owner}, ${head_repo}, ${head_sha})`,
         );
-        const pullRequests = await github.paginate(
-          github.rest.repos.listPullRequestsAssociatedWithCommit,
-          {
-            owner: head_owner,
-            repo: head_repo,
-            commit_sha: head_sha,
-            per_page: PER_PAGE_MAX,
-          },
+        const pullRequests = (
+          await github.paginate(
+            github.rest.repos.listPullRequestsAssociatedWithCommit,
+            {
+              owner: head_owner,
+              repo: head_repo,
+              commit_sha: head_sha,
+              per_page: PER_PAGE_MAX,
+            },
+          )
+        ).filter(
+          // Only include PRs to the same repo as the triggering workflow.
+          //
+          // Other unique keys like "full_name" should also work, but "id" is the safest since it's
+          // supposed to be guaranteed unique and never change (repos can be renamed or change owners).
+          (pr) => pr.base.repo.id === payload.workflow_run.repository.id,
         );
 
         if (pullRequests.length === 0) {
@@ -238,25 +246,41 @@ export async function extractInputs(github, context, core) {
         `Could not extract build ID or project URL from check run details URL: ${checkRun.details_url}`,
       );
     }
-    if (
-      !context.payload.repository ||
-      !context.payload.repository.owner ||
-      !context.payload.repository.owner.login ||
-      !context.payload.repository.name
-    ) {
-      throw new Error(
-        `Could not extract repository owner or name from context payload: ${JSON.stringify(context.payload.repository)}`,
+
+    const payload =
+      /** @type {import("@octokit/webhooks-types").CheckRunEvent} */ (
+        context.payload
       );
-    }
+    const repositoryInfo = getRepositoryInfo(payload.repository);
     inputs = {
-      owner: context.payload.repository.owner.login,
-      repo: context.payload.repository.name,
+      owner: repositoryInfo.owner,
+      repo: repositoryInfo.repo,
       head_sha: checkRun.head_sha,
       ado_build_id: match[2],
       ado_project_url: match[1],
       issue_number: NaN,
       run_id: NaN,
     };
+  } else if (
+    context.eventName === "check_suite" &&
+    context.payload.action === "completed"
+  ) {
+    const payload =
+      /** @type {import("@octokit/webhooks-types").CheckSuiteCompletedEvent} */ (
+        context.payload
+      );
+
+    const repositoryInfo = getRepositoryInfo(payload.repository);
+    inputs = {
+      owner: repositoryInfo.owner,
+      repo: repositoryInfo.repo,
+      head_sha: payload.check_suite.head_sha,
+
+      // These are NaN today because the only consumer of this event needs only
+      // the head_sha
+      issue_number: NaN,
+      run_id: NaN,
+    };
   } else {
     throw new Error(
       `Context '${context.eventName}:${context.payload.action}' is not yet supported.`,
@@ -266,3 +290,25 @@ export async function extractInputs(github, context, core) {
   core.info(`inputs: ${JSON.stringify(inputs)}`);
   return inputs;
 }
+
+/**
+ * @param {import("@octokit/webhooks-types").Repository | undefined} repository
+ * @returns {{ owner: string, repo: string }}
+ */
+function getRepositoryInfo(repository) {
+  if (
+    !repository ||
+    !repository.owner ||
+    !repository.owner.login ||
+    !repository.name
+  ) {
+    throw new Error(
+      `Could not extract repository owner or name from context payload: ${JSON.stringify(repository)}`,
+    );
+  }
+
+  return {
+    owner: repository.owner.login,
+    repo: repository.name,
+  };
+}
@@ -0,0 +1,56 @@
+/**
+ * Retry a function with exponential backoff
+ * @param {Function} fn - Function to retry
+ * @param {Object} options - Retry options
+ * @param {number} [options.maxRetries=3] - Maximum number of retries
+ * @param {number} [options.initialDelayMs=1000] - Initial delay in milliseconds
+ * @param {number} [options.maxDelayMs=10000] - Maximum delay in milliseconds
+ * @param {Function} [options.logger] - Logger function
+ * @returns {Promise<any>} - Result of the function
+ */
+export async function retry(
+  fn,
+  {
+    maxRetries = 3,
+    initialDelayMs = 1000,
+    maxDelayMs = 10000,
+    logger = console.log,
+  } = {},
+) {
+  let lastError;
+
+  for (let attempt = 0; attempt < maxRetries + 1; attempt++) {
+    try {
+      return await fn();
+    } catch (error) {
+      lastError = error;
+
+      if (attempt < maxRetries) {
+        const delayMs = Math.min(
+          initialDelayMs * Math.pow(2, attempt),
+          maxDelayMs,
+        );
+        logger(
+          `Request failed, retrying in ${delayMs}ms... (${attempt + 1}/${maxRetries})`,
+        );
+        if (error instanceof Error) {
+          logger(`Error: ${error.message}`);
+        }
+        await new Promise((resolve) => setTimeout(resolve, delayMs));
+      }
+    }
+  }
+
+  throw lastError;
+}
+
+/**
+ * Fetch with retry functionality
+ * @param {string} url - URL to fetch
+ * @param {Object} [options] - Fetch options
+ * @param {Object} [retryOptions] - Retry options
+ * @returns {Promise<Response>} - Fetch response
+ */
+export async function fetchWithRetry(url, options = {}, retryOptions = {}) {
+  return retry(() => fetch(url, options), retryOptions);
+}