feat(ci): add test impact analysis for selective test execution

[Alan-TheGentleman]

Context

Optimizes CI by running only relevant tests based on changed files, reducing feedback time for developers.

Jira: PROWLER-738

Description

Adds a test impact analysis system that determines which tests to run based on changed files.

How It Works

1. Ignored Paths (skip ALL tests): Changes to docs, configs, and non-code files

   • docs/**, *.md, examples/**, contrib/**, skills/**
   • .gitignore, .editorconfig, LICENSE, CODEOWNERS
   • IDE configs (.vscode/**, .idea/**)

2. Critical Paths (run ALL tests): Changes to foundational code trigger full test suite

   • prowler/lib/**, prowler/config/**, prowler/exceptions/**
   • api/src/backend/api/models.py, api/src/backend/config/**
   • ui/lib/**, ui/types/**, ui/config/**
   • .github/workflows/**

3. Module Paths (run targeted tests): Changes to specific modules run only related tests

   Change	Tests Run
   prowler/providers/aws/**	tests/providers/aws/**
   ui/components/providers/**	ui/tests/providers/**
   ui/components/auth/**	ui/tests/sign-in/** ui/tests/sign-up/**
   api/v1/serializers.py	API tests + UI E2E (side effect)

4. Side Effects Detection: API serializer/view changes trigger UI E2E tests

Files Added

File	Purpose
.github/test-impact.yml	Path → test mappings configuration
.github/scripts/test-impact.py	Analysis script
.github/workflows/test-impact-analysis.yml	Reusable workflow
.github/workflows/ui-e2e-tests-v2.yml	Optimized E2E workflow

Benchmark Results

Tested on this PR with different change scenarios:

Test 1: Provider component changes (ui/components/providers/)

Workflow	Duration	Tests Run
UI - E2E Tests (Original)	12m 31s	All specs
UI - E2E Tests (Optimized)	11m 39s	providers/** only
Savings	~1 min (8%)

Test 2: Auth component changes (ui/components/auth/)

Workflow	Duration	Tests Run
UI - E2E Tests (Original)	12m 53s	All specs
UI - E2E Tests (Optimized)	10m 13s	sign-in/** sign-up/** only
Savings	~2m 40s (20%)

Test 3: Docs-only changes (docs/**, *.md)

Workflow	Duration	Tests Run
UI - E2E Tests (Original)	12m+	All specs
UI - E2E Tests (Optimized)	~20s	SKIPPED
Savings	~12 min (100%)

Note: Setup time (k8s cluster, API, build) is ~8-9 min fixed for E2E. Biggest savings come when changes don't require any tests (docs, configs).

Steps to review

1. Review .github/test-impact.yml for correct path → test mappings
2. Review .github/scripts/test-impact.py for analysis logic
3. Check workflow outputs in the Actions tab of this PR
4. After merge, monitor subsequent PRs to validate selective test execution

Checklist

• Are there new checks included in this PR? No
• Review if the code is being covered by tests.
• Review if code is being documented following https://github.com/google/styleguide/blob/gh-pages/pyguide.md#38-comments-and-docstrings
• Review if backport is needed.
• Review if is needed to change the Readme.md - Not needed
• Ensure new entries are added to CHANGELOG.md, if applicable.

License

By submitting this pull request, I confirm that my contribution is made under the terms of the Apache 2.0 license.

[github-actions]

⚠️ Changes detected in the following folders without a corresponding update to the CHANGELOG.md:

• ui

Please add an entry to the corresponding CHANGELOG.md file to maintain a clear history of changes.

[github-actions]

✅ Conflict Markers Resolved

All conflict markers have been successfully resolved in this pull request.

[github-actions]

🔒 Container Security Scan

Image: prowler-ui:fb5ce58
Last scan: 2026-01-21 12:50:19 UTC

✅ No Vulnerabilities Detected

The container image passed all security checks. No known CVEs were found.

📋 Resources:

• Download full report (see artifacts)
• View in Security tab
• Scanned with Trivy