Merge branch 'master' into DOC-1822

Author: StacySpectro

.github/actions/build-cached-cves/action.yaml

@@ -58,7 +58,7 @@ runs:
     - name: Slack Notification
       uses: rtCamp/[email protected]
       env:
-        SLACK_WEBHOOK: ${{ inputs.slack-webhook }}
+        SLACK_WEBHOOK: ${{ secrets.SLACK_PRIVATE_TEAM_WEBHOOK }}
         SLACK_USERNAME: "spectromate"
         SLACK_ICON_EMOJI: ":robot_panic:"
         SLACK_COLOR: ${{ job.status }}

.github/workflows/clean-up-unused-images.yaml

@@ -1,14 +1,14 @@
 # This workflow removed unused images from the repository and creates a PR to clean them up.
-# The workflow runs on the first day of every month at 2 am UTC.
+# The workflow runs on the first day of every month at 12PM UTC.
 # Any image that is not referenced in the repository is considered unused.
 # This workflow supports on-demand execution using the workflow_dispatch event.
 
 name: Clean Up Unused Images
 
 on:
   schedule:
-    # On the first of every month at 2 am
-    - cron: '0 2 1 * *'
+    # On the first of every month at 12 PM UTC
+    - cron: '0 12 1 * *'
   workflow_dispatch:
 
 concurrency:

.github/workflows/release.yaml

@@ -20,6 +20,10 @@ on:
         description: 'Use the GitHub-hosted large runner. Allowed values are true or false. Caution - this results in additional charges to the organization.'
         required: false
         default: 'false'
+      securityAdvisoryPublished:
+        description: 'Indicates if a security advisory has been published. Provide the title of the security advisory if true, otherwise leave empty. Example: Security Advisory 007- MongoDB zlib Compression Memory'
+        required: false
+        default: ''
 
 env:
   GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
@@ -171,6 +175,51 @@ jobs:
           SLACKIFY_MARKDOWN: true
           ENABLE_ESCAPES: true
           SLACK_MESSAGE: "The large runner release job for `${{ github.workflow }}` in `${{ github.repository }}` failed at step: `${{ env.CURRENT_STEP }}`. [View details](${{ github.server_url }}/${{ github.repository }}/actions/runs/${{ github.run_id }})."
+  
+  post-security-advisory:
+    name: "Post Security Advisory Notification"
+    if: always() && (needs.build-large-runner.result == 'success' || needs.build-self-hosted-runner.result == 'success') && github.event_name == 'workflow_dispatch' && github.event.inputs.securityAdvisoryPublished != ''
+    needs: [build-self-hosted-runner,build-large-runner]
+    runs-on: ubuntu-latest
+    steps:
+      - name: Slugify Security Advisory Title
+        id: slugify
+        run: |
+          echo "CURRENT_STEP=Security Advisory URL" >> $GITHUB_ENV
+          SECURITY_ADVISORY_PUBLISHED="${{ github.event.inputs.securityAdvisoryPublished }}"
+          # Create a slug by converting to lowercase, removing periods and colons, and replacing spaces and special characters with hyphens
+          SLUG=$(echo "$SECURITY_ADVISORY_PUBLISHED" \
+            | tr '[:upper:]' '[:lower:]' \
+            | sed 's/\.//g' \
+            | sed 's/\://g' \
+            | sed 's/[^a-z0-9-]/-/g')
+          SECURITY_ADVISORY_URL="https://docs.spectrocloud.com/security-bulletins/security-advisories/#${SLUG}"
+          echo "Security Advisory URL: ${SECURITY_ADVISORY_URL}"
+          # Export the URL as a step output so later steps can read it
+          echo "security_advisory_url=${SECURITY_ADVISORY_URL}" >> "$GITHUB_OUTPUT"
+
+      - name: Notify Slack
+        uses: rtCamp/[email protected]
+        env:
+          SLACK_WEBHOOK: ${{ secrets.SLACK_WEBHOOK_URL }}
+          SLACK_USERNAME: "spectromate"
+          SLACK_ICON_EMOJI: ":robot_panic:"
+          SLACK_COLOR: "#1E90FF"
+          SLACK_MESSAGE: |
+            :information_source: *<${{ steps.slugify.outputs.security_advisory_url }}|${{ github.event.inputs.securityAdvisoryPublished }}>* has just been published!
+            
+      - name: Slack Notification on Failure
+        if: ${{ failure() }}
+        uses: rtCamp/[email protected]
+        env:
+          SLACK_WEBHOOK: ${{ secrets.SLACK_PRIVATE_TEAM_WEBHOOK }}
+          SLACK_USERNAME: "spectromate"
+          SLACK_ICON_EMOJI: ":robot_panic:"
+          SLACK_COLOR: "danger"
+          SLACKIFY_MARKDOWN: true
+          ENABLE_ESCAPES: true
+          SLACK_MESSAGE: "The post-security-advisory job for `${{ github.workflow }}` in `${{ github.repository }}` failed at step: `${{ env.CURRENT_STEP }}`. [View details](${{ github.server_url }}/${{ github.repository }}/actions/runs/${{ github.run_id }})."
+
 
   release:
     name: "Release"

.github/workflows/spellcheck-report.yaml

@@ -1,12 +1,12 @@
 # This workflow runs the set of core vale checks on the entire repo.
-# The workflow runs every Monday at 8 am UTC.
+# The workflow runs every Monday at 4PM UTC.
 # This workflow supports on-demand execution using the workflow_dispatch event.
 
 name: Spellcheck Entire Librarium
 on:
   schedule:
-    # Every Monday at 8AM UTC
-    - cron: '0 8 * * 1'
+    # Every Monday at 4PM UTC
+    - cron: '0 16 * * 1'
   workflow_dispatch:
 
 concurrency:

.github/workflows/url-checks.yaml

@@ -1,11 +1,11 @@
 # This workflow scans the markdown files in the repository for broken URLs.
 # Additional logic is added to the Make command verify-rate-limited-links-ci to check for rate-limited URLs, including guidance on what domains to ignore.
-# The workflow is scheduled to run every Monday at 6 am.
+# The workflow is scheduled to run every Monday at 2PM UTC.
 
 on:
   schedule:
-    # Every Monday at 6 am
-    - cron: '0 6 * * 1'
+    # Every Monday at 2PM UTC
+    - cron: '0 14 * * 1'
   workflow_dispatch:
 
 

.gitignore

@@ -6,7 +6,7 @@ build
 
 # Generated files
 .docusaurus
-.cache-loader
+.cache-loaderx
 
 # Misc
 .env
@@ -37,8 +37,10 @@ palette-docs.pdf
 
 docs/api-content/api-docs/v1/*.mdx
 docs/api-content/api-docs/v1/sidebar.*
+docs/api-content/api-docs/v1/*.json
 docs/api-content/api-docs/edge-v1/*.mdx
 docs/api-content/api-docs/edge-v1/sidebar.*
+docs/api-content/api-docs/edge-v1/*.json
 
 # Security Bulletins (Autogenerated)
 

_partials/self-hosted/feature-flags/_feature-flags-intro.mdx

@@ -17,7 +17,7 @@ The following table lists all available feature flags and their supported platfo
 | ---------------------- | ----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------- | :-----------------: | :------------------------: |
 | **AwsSecretPartition** | Configure [AWS Secret Cloud](https://aws.amazon.com/federal/secret-cloud/) and [AWS Top Secret Cloud](https://aws.amazon.com/federal/top-secret-cloud/) accounts and deploy EKS clusters in AWS Secret and Top Secret clouds. Refer to our [Register and Manage AWS Accounts](/clusters/public-cloud/aws/add-aws-accounts) guide for more information.                                                                                                                                                         |         :x:         |     :white_check_mark:     |
 | **AzureUSSecretCloud** | Configure [Azure Government Secret cloud](https://azure.microsoft.com/en-us/explore/global-infrastructure/government/national-security) accounts and deploy Azure IaaS clusters in Azure Government Secret cloud. Refer to our [Register and Manage Azure Accounts](/clusters/public-cloud/azure/azure-cloud/#azure-government-secret-cloud) guide for more information.                                                                                                                                                                                                                                    |         :x:         |     :white_check_mark:     |
-| **LxdMaas**            | Spawn multiple control plane nodes as LXD VMs and consolidate them on MAAS-managed servers while your worker nodes run on bare metal devices. Refer to our [Create and Manage MAAS Clusters Using LXD VMs](/clusters/data-center/maas/create-manage-maas-lxd-clusters/) /> guide for more information.                                                                                                                                            | :white_check_mark:  |     :white_check_mark:     |
+| **LxdMaas**            | Spawn multiple control plane nodes as LXD VMs and consolidate them on MAAS-managed servers while your worker nodes run on bare metal devices. Refer to our [Create and Manage MAAS Clusters Using LXD VMs](/clusters/data-center/maas/create-manage-maas-lxd-clusters/) guide for more information.                                                                                                                                            | :white_check_mark:  |     :white_check_mark:     |
 | **ApacheCloudStack**            | Allows for the creation of workloads on Apache CloudStack. Refer to our [Create and Manage Apache CloudStack Clusters](/clusters/data-center/cloudstack/create-manage-cloudstack-clusters/) guide for more information.                                                                                                                                            | :white_check_mark:  |     :white_check_mark:     |