SalesforceCommerceCloud · vcua-mobify · Mar 4, 2025 · Feb 24, 2025 · Feb 26, 2025 · Feb 26, 2025
@@ -4,18 +4,20 @@ inputs:
     description: Project directory
     default: ${{ github.workspace }}
   TARGET:
-    description: MRT target
+    description: MRT target environment
   FLAGS:
     description: Push flags
+  PROJECT:
+    description: MRT target project
+    default: "scaffold-pwa"
 runs:
   using: composite
   steps:
     - name: Push Bundle to MRT
       run: |-
         cd ${{ inputs.CWD }}
-        project="scaffold-pwa"
         build="build ${{ github.run_id }} on ${{ github.ref }} (${{ github.sha }})"
         if [[ ${{ inputs.TARGET }} ]]; then
-          npm run push -- -s $project --message "$build" --target ${{ inputs.TARGET }} ${{ inputs.FLAGS }}
+          npm run push -- -s ${{ inputs.PROJECT }} --message "$build" --target ${{ inputs.TARGET }} ${{ inputs.FLAGS }}
         fi
       shell: bash
diff --git a/.github/workflows/bug_bounty.yml b/.github/workflows/bug_bounty.yml
@@ -0,0 +1,39 @@
+name: SalesforceCommerceCloud/pwa-kit/bug_bounty
+on:
+  # Runs this job when a new Github release is published
+  # TODO: How do we ensure this only runs for the latest major version? We don't want to run this
+  # for a new v2 release. But due to policy, we are not allowed to use unverified marketplace actions
+  # such as https://github.com/marketplace/actions/version-check
+  release:
+    types: [released]
+
+jobs:
+  deploy-bug-bounty:
+    runs-on: ubuntu-latest
-jobs:
-  deploy-bug-bounty:
-    runs-on: ubuntu-latest
+jobs:
+  check-latest-release:
+    runs-on: ubuntu-latest
+    ...
+  deploy-bug-bounty:
+    needs: check-latest-release
+    ...
-jobs:
-  deploy-bug-bounty:
-    runs-on: ubuntu-latest
+jobs:
+  check-latest-release:
+    runs-on: ubuntu-latest
+    ...
+  deploy-bug-bounty:
+    needs: check-latest-release
+    ...
+    steps:
+      - name: Checkout
+        uses: actions/checkout@v4
+
 - name: Setup Node 
   uses: actions/setup-node@v4 
   with: 
     node-version: ${{ matrix.node }} 
     cache: npm 
-
+      - name: Setup Node
+        if: env.IS_LATEST_RELEASE == 'true'
+        uses: actions/setup-node@v4
+        with:
+          node-version: 22
+          cache: 'npm'
 - name: Setup Node 
   uses: actions/setup-node@v4 
   with: 
     node-version: ${{ matrix.node }} 
     cache: npm 
-
+      - name: Setup Node
+        if: env.IS_LATEST_RELEASE == 'true'
+        uses: actions/setup-node@v4
+        with:
+          node-version: 22
+          cache: 'npm'
+      - name: Install Monorepo Dependencies
+        run: |-
+          # Install node dependencies
+          node ./scripts/gtime.js monorepo_install npm ci
+
+      - name: Generate Retail App Demo
+        uses: ./.github/actions/e2e_generate_app
+        with:
+          PROJECT_KEY: "retail-react-app-bug-bounty"
+
+      - name: Create MRT credentials file
+        uses: "./.github/actions/create_mrt"
+        with:
+          mobify_user: ${{ secrets.MOBIFY_STG_CLIENT_USER }}
+          mobify_api_key: ${{ secrets.MOBIFY_STG_CLIENT_API_KEY }}
+
+      - name: Push Bundle to MRT (Bug Bounty)
+        uses: "./.github/actions/push_to_mrt"
+        with:
+          CWD: "../generated-projects/retail-react-app-bug-bounty"
+          TARGET: testing
+          PROJECT: pwa-kit
+          FLAGS: --cloud-origin https://cloud-testing.mobify-staging.com -c ~/.mobify --wait
@@ -101,9 +101,11 @@ module.exports = {
       },
     ],
     "retail-app-private-client": [],
+    "retail-react-app-bug-bounty": [],
   },
   PRESET: {
     "retail-app-private-client": "retail-react-app-private-slas-client",
+    "retail-react-app-bug-bounty": "retail-react-app-bug-bounty",
   },
   EXPECTED_GENERATED_ARTIFACTS: {
     "retail-app-demo": [

@@ -62,7 +62,8 @@ program
             'retail-app-demo',
             'retail-app-ext',
             'retail-app-no-ext',
-            'retail-app-private-client'
+            'retail-app-private-client',
+            'retail-react-app-bug-bounty'
         ]
         if (!validKeys.includes(value)) {
             throw new Error('Invalid project key.')

@@ -320,6 +320,31 @@ const PRESETS = [
         assets: ['translations'],
         private: true
     },
+    {
+        id: 'retail-react-app-bug-bounty',
+        name: 'Retail React App Bug Bounty Project',
+        description: '',
+        templateSource: {
+            type: TEMPLATE_SOURCE_NPM,
+            id: '@salesforce/retail-react-app'
+        },
+        questions: [...EXTENSIBILITY_QUESTIONS, ...HYBRID_QUESTIONS, ...RETAIL_REACT_APP_QUESTIONS],
-        questions: [...EXTENSIBILITY_QUESTIONS, ...HYBRID_QUESTIONS, ...RETAIL_REACT_APP_QUESTIONS],
+        questions: [...EXTENSIBILITY_QUESTIONS, ...RETAIL_REACT_APP_QUESTIONS],
-        questions: [...EXTENSIBILITY_QUESTIONS, ...HYBRID_QUESTIONS, ...RETAIL_REACT_APP_QUESTIONS],
+        questions: [...EXTENSIBILITY_QUESTIONS, ...RETAIL_REACT_APP_QUESTIONS],
+        answers: {
+            ['project.extend']: true,
+            ['project.hybrid']: true,
-            ['project.hybrid']: true,
+            ['project.hybrid']: false,
-            ['project.hybrid']: true,
+            ['project.hybrid']: false,
+            ['project.name']: 'retail-react-app',
+            ['project.commerce.instanceUrl']: 'https://zzec-006.dx.commercecloud.salesforce.com',
+            ['project.commerce.clientId']: 'b56e7ad3-2237-42c9-8f55-41e63ebca420',
+            ['project.commerce.siteId']: 'RefArch',
+            ['project.commerce.organizationId']: 'f_ecom_zzec_006',
+            ['project.commerce.shortCode']: 'staging-001',
+            ['project.einstein.clientId']: '1ea06c6e-c936-4324-bcf0-fada93f83bb1',
+            ['project.einstein.siteId']: 'aaij-MobileFirst',
+            ['project.commerce.isSlasPrivate']: true
+        },
+        assets: ['translations'],
+        private: true
+    },
     {
         id: 'retail-react-app-hybrid-test-project',
         name: 'Retail React App Hybrid Test Private SLAS Project',