This is scality/workflows, a repository of reusable GitHub Actions workflows shared across the Scality organization. Downstream repos call these workflows via workflow_call.
.github/workflows/— Reusable workflow definitions (the core asset)docs/— MkDocs Material documentation for each workflowtests/— Dockerfiles used as fixtures to validate workflows on PRmkdocs.yml— Documentation site configurationrequirements.txt— Python dependency for docs (mkdocs-material)
| File | Purpose |
|---|---|
docker-build.yaml |
Build and push Docker images with Buildx, caching, multi-platform support |
trivy.yaml |
Container vulnerability scanning, uploads SARIF to GitHub Security tab |
lfs-warning.yaml |
Validates file sizes in PRs, warns about files not tracked by Git LFS |
claude-code-review.yml |
AI-powered PR review via Vertex AI |
- Workflow files use
.yamlextension (exceptclaude-code-review.yml) - All workflows use
workflow_calltrigger with typedinputsandsecrets - Secrets have sensible defaults where possible (e.g.,
GITHUB_TOKENfor registry auth) - Actions are pinned to major version tags (e.g.,
@v6,@v3) tests.yamlcalls all workflows locally (./.github/workflows/...) to validate on PR
There is no test framework. Workflows are tested by tests.yaml which calls each reusable workflow with test fixtures from tests/docker/.
Documentation is built with MkDocs Material (mkdocs build --strict). When adding or modifying a workflow, update the corresponding page in docs/.
Changes to workflow inputs, secrets, or outputs can break consuming repos. Treat these as public API surfaces — avoid removing or renaming parameters without a migration path.