prowgen: use preset for registry pull credentials volume by petr-muller · Pull Request #4994 · openshift/ci-tools

petr-muller · 2026-03-06T18:07:14Z

Summary

Proof of concept for using Prow presets to deduplicate boilerplate from generated Prowjob definitions.

This PR moves the pull-secret volume and volumeMount from the hardcoded defaultPodSpec in prowgen to a Prow preset added in openshift/release#75830, matched via a new label added to all prowgen-generated jobs.

Design

This is the first of several compositional, domain-specific presets — each covers one logical domain with its own label, and they compose independently:

Impact (this preset alone)

Removes ~7 lines of boilerplate per job × 126K jobs ≈ ~888K lines from generated YAML
When fully rolled out with all presets: ~3.5M lines (~36%) reduction in ci-operator/jobs/

Companion PR

Requires the preset definition in openshift/release: openshift/release#75830

🤖 Generated with Claude Code

Summary by CodeRabbit

New Features
- Added registry pull preset functionality, enabling jobs to manage pull-secret credentials through a centralized preset approach instead of inline volume mounting.
- The registry pull preset reduces configuration complexity and improves credential handling efficiency in job specifications.
- Jobs configured to use the preset benefit from streamlined credential management throughout execution.

openshift-ci-robot · 2026-03-06T18:07:16Z

Pipeline controller notification
This repo is configured to use the pipeline controller. Second-stage tests will be triggered either automatically or after lgtm label is added, depending on the repository configuration. The pipeline controller will automatically detect which contexts are required and will utilize /test Prow commands to trigger the second stage.

For optional jobs, comment /test ? to see a list of all defined jobs. To trigger manually all jobs from second stage use /pipeline required command.

This repository is configured in: automatic mode

openshift-ci · 2026-03-06T18:07:19Z

Skipping CI for Draft Pull Request.
If you want CI signal for your change, please convert it to an actual PR.
You can still manually trigger a test run with /test all

petr-muller · 2026-03-06T18:07:40Z

Companion preset definition PR: openshift/release#75830

coderabbitai · 2026-03-06T18:07:40Z

Walkthrough

This change introduces a registry-pull preset system for ProwJob generation. A new constant and builder methods enable selective application of a Prow preset that handles pull-secret credentials, removing the need for inline secret volumes when the preset is active. The preset is conditionally enabled based on specific author or commenter identities.

Changes

Cohort / File(s)	Summary
Core Constants and Builders `pkg/api/constant.go`, `pkg/prowgen/jobbase.go`	Added `PresetRegistryPullLabel` constant and `UseRegistryPullPreset()` method to prowJobBaseBuilder. Introduced `shouldUseRegistryPullPreset()` helper to determine preset application and logic to set the label and remove inline pull-secret configuration when applicable.
PodSpec Utilities `pkg/prowgen/podspec.go`	Added `removeInlinePullSecret()` function and `pullSecretVolumeName` constant to strip inline pull-secret volumes and mounts from PodSpecs. Updated import handling for CIOperatorHTTPServerIPEnvVarName.
Test Fixtures `pkg/controller/ephemeralcluster/testdata/zz_fixture_pj_TestCreateProwJob_*`	Updated three ProwJob test fixture YAML files to add the registry-pull preset label and remove inline pull-secret volume configurations.
Prow Plugin Server `cmd/multi-pr-prow-plugin/server.go`, `cmd/multi-pr-prow-plugin/server_test.go`	Modified `generateProwJob()` to accept `commenter` parameter and conditionally enable registry pull preset when commenter matches a specific user. Updated all test call sites to provide the new parameter.
PR Queue Reconciler `pkg/controller/prpqr_reconciler/prpqr_reconciler.go`	Added `hasPRAuthor()` helper function and integrated logic to conditionally enable registry pull preset based on PR author identity during ProwJob generation.

Sequence Diagram(s)

sequenceDiagram
    participant User as User/Commenter
    participant Server as Prow Plugin Server
    participant Builder as ProwJob Builder
    participant PodSpec as PodSpec Modifier
    participant ProwJob as Generated ProwJob

    User->>Server: Trigger ProwJob generation
    Server->>Builder: Create JobBaseBuilder
    alt Commenter is "petr-muller"
        Server->>Builder: UseRegistryPullPreset()
        Builder->>Builder: Set useRegistryPullPreset flag
    end
    Server->>Builder: Build()
    alt shouldUseRegistryPullPreset() is true
        Builder->>Builder: Add registry-pull label
        Builder->>PodSpec: removeInlinePullSecret()
        PodSpec->>PodSpec: Remove pull-secret volume/mount
    end
    Builder->>ProwJob: Return configured ProwJob

sequenceDiagram
    participant PR as Pull Request
    participant Reconciler as PR Queue Reconciler
    participant PRAuthorCheck as Author Check
    participant Builder as ProwJob Builder
    participant PodSpec as PodSpec Modifier
    participant ProwJob as Generated ProwJob

    PR->>Reconciler: Trigger ProwJob generation
    Reconciler->>PRAuthorCheck: hasPRAuthor(prs, "petr-muller")
    PRAuthorCheck-->>Reconciler: Author matches?
    Reconciler->>Builder: Create JobBaseBuilder
    alt Author is "petr-muller"
        Reconciler->>Builder: UseRegistryPullPreset()
    end
    Reconciler->>Builder: Build()
    alt Registry pull preset enabled
        Builder->>Builder: Add registry-pull label
        Builder->>PodSpec: removeInlinePullSecret()
        PodSpec->>PodSpec: Remove pull-secret volume/mount
    end
    Builder->>ProwJob: Return configured ProwJob

Estimated code review effort

🎯 3 (Moderate) | ⏱️ ~20 minutes

🚥 Pre-merge checks | ✅ 4 | ❌ 1

❌ Failed checks (1 warning)

Check name	Status	Explanation	Resolution
Docstring Coverage	⚠️ Warning	Docstring coverage is 33.33% which is insufficient. The required threshold is 80.00%.	Write docstrings for the functions missing them to satisfy the coverage threshold.

✅ Passed checks (4 passed)

Check name	Status	Explanation
Description Check	✅ Passed	Check skipped - CodeRabbit’s high-level summary is enabled.
Title check	✅ Passed	The PR title directly and clearly describes the main change: using a Prow preset for the registry pull credentials volume instead of hardcoding it.
Stable And Deterministic Test Names	✅ Passed	The pull request does not introduce any Ginkgo tests. Modified test files use standard Go testing patterns, not Ginkgo definitions.
Test Structure And Quality	✅ Passed	This PR does not contain any Ginkgo test code. The repository uses standard Go testing patterns with the testing package and table-driven tests, not the Ginkgo framework.

_{✏️ Tip: You can configure your own custom pre-merge checks in the settings.}

✨ Finishing Touches

🧪 Generate unit tests (beta)

Create PR with unit tests
Post copyable unit tests in a comment

_{Comment @coderabbitai help to get the list of available commands and usage tips.}

Regenerate all Prowjob definitions using the modified prowgen that uses the preset-ci-operator-image-pull Prow preset instead of inlining the pull-secret volume and volumeMount in every job PodSpec. Per-job changes: - Added label: preset-ci-operator-image-pull: "true" - Removed: pull-secret volumeMount (3 lines) - Removed: pull-secret volume definition (3 lines) - Net: -5 lines per job 25,666 files changed, -633K lines net reduction. Depends on: - Preset definition: openshift#75830 - Prowgen change: openshift/ci-tools#4994 Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>

coderabbitai

Caution

Some comments are outside the diff and can’t be posted inline due to platform limitations.

⚠️ Outside diff range comments (1)

pkg/prowgen/podspec.go (1)
54-68: ⚠️ Potential issue | 🟡 Minor

Ensure the companion Prow preset is deployed before rolling out this change.

This change removes the inline "pull-secret" volume from all generated ProwJob podspecs and delegates it to the preset-ci-operator-image-pull Prow preset. The preset is now applied via a label on all generated jobs, but if the preset is not yet deployed in the Prow environment, jobs will fail with missing mount errors. Verify that the companion preset definition in openshift/release is deployed and active before this change rolls out.
🤖 Prompt for AI Agents
Verify each finding against the current code and only fix it if needed.

In `@pkg/prowgen/podspec.go` around lines 54 - 68, The generated PodSpec no longer
includes the inline "pull-secret" volume and now relies on the
"preset-ci-operator-image-pull" preset, which can break jobs if the preset isn't
deployed; to be safe, restore the inline pull-secret volume in
pkg/prowgen/podspec.go by adding a Volume entry named "pull-secret" with a
SecretVolumeSource pointing to the pull-secret Secret (the same name used by
your mounts) alongside the existing Volumes (e.g., near the "result-aggregator"
and "manifest-tool-local-pusher" entries) so jobs keep working until the
companion preset is confirmed deployed.

🤖 Prompt for all review comments with AI agents

Verify each finding against the current code and only fix it if needed.

Outside diff comments:
In `@pkg/prowgen/podspec.go`:
- Around line 54-68: The generated PodSpec no longer includes the inline
"pull-secret" volume and now relies on the "preset-ci-operator-image-pull"
preset, which can break jobs if the preset isn't deployed; to be safe, restore
the inline pull-secret volume in pkg/prowgen/podspec.go by adding a Volume entry
named "pull-secret" with a SecretVolumeSource pointing to the pull-secret Secret
(the same name used by your mounts) alongside the existing Volumes (e.g., near
the "result-aggregator" and "manifest-tool-local-pusher" entries) so jobs keep
working until the companion preset is confirmed deployed.

ℹ️ Review info

⚙️ Run configuration

Configuration used: Repository: openshift/coderabbit/.coderabbit.yaml

Review profile: CHILL

Plan: Pro

Run ID: a056f896-8c6e-457c-b1ee-94a2e86b6534

📥 Commits

Reviewing files that changed from the base of the PR and between ec71dc1 and 5db89a5.

📒 Files selected for processing (137)

cmd/ci-operator-prowgen/testdata/zz_fixture_postsubmit_TestFromCIOperatorConfigToProwYaml_Custom_test_timeout.yaml
cmd/ci-operator-prowgen/testdata/zz_fixture_postsubmit_TestFromCIOperatorConfigToProwYaml_Input_is_YAML_and_it_is_correctly_processed.yaml
cmd/ci-operator-prowgen/testdata/zz_fixture_postsubmit_TestFromCIOperatorConfigToProwYaml_Using_a_variant_config__one_test_and_images__one_existing_job._Expect_one_presubmit__pre_post_submit_images_jobs._Existing_job_should_not_be_changed..yaml
cmd/ci-operator-prowgen/testdata/zz_fixture_postsubmit_TestFromCIOperatorConfigToProwYaml_one_test_and_images__no_previous_jobs._Expect_test_presubmit__pre_post_submit_images_jobs.yaml
cmd/ci-operator-prowgen/testdata/zz_fixture_presubmit_TestFromCIOperatorConfigToProwYaml_Custom_test_timeout.yaml
cmd/ci-operator-prowgen/testdata/zz_fixture_presubmit_TestFromCIOperatorConfigToProwYaml_Input_is_YAML_and_it_is_correctly_processed.yaml
cmd/ci-operator-prowgen/testdata/zz_fixture_presubmit_TestFromCIOperatorConfigToProwYaml_Using_a_variant_config__one_test_and_images__one_existing_job._Expect_one_presubmit__pre_post_submit_images_jobs._Existing_job_should_not_be_changed..yaml
cmd/ci-operator-prowgen/testdata/zz_fixture_presubmit_TestFromCIOperatorConfigToProwYaml_one_test_and_images__no_previous_jobs._Expect_test_presubmit__pre_post_submit_images_jobs.yaml
pkg/api/constant.go
pkg/prowgen/jobbase.go
pkg/prowgen/podspec.go
pkg/prowgen/testdata/zz_fixture_TestCIPullSecret_secret_is_added.yaml
pkg/prowgen/testdata/zz_fixture_TestClaims_secret_is_added.yaml
pkg/prowgen/testdata/zz_fixture_TestCustomHashInput_custom_hash_input_is_added.yaml
pkg/prowgen/testdata/zz_fixture_TestCustomHashInput_custom_hash_inputs_are_added.yaml
pkg/prowgen/testdata/zz_fixture_TestGSMConfig_add_gsm_config_volume_and_mount.yaml
pkg/prowgen/testdata/zz_fixture_TestGenerateJobBase_config_variant.yaml
pkg/prowgen/testdata/zz_fixture_TestGenerateJobBase_expose_job_for_private_repos_with_public_results.yaml
pkg/prowgen/testdata/zz_fixture_TestGenerateJobBase_expose_option_set_but_not_private.yaml
pkg/prowgen/testdata/zz_fixture_TestGenerateJobBase_hidden_job_for_private_repos.yaml
pkg/prowgen/testdata/zz_fixture_TestGenerateJobBase_no_special_options.yaml
pkg/prowgen/testdata/zz_fixture_TestGenerateJobBase_path_alias.yaml
pkg/prowgen/testdata/zz_fixture_TestGenerateJobBase_rehearsable.yaml
pkg/prowgen/testdata/zz_fixture_TestGenerateJobs_Promotion_configuration_causes_promote_job.yaml
pkg/prowgen/testdata/zz_fixture_TestGenerateJobs_Promotion_configuration_causes_promote_job_with_unique_targets.yaml
pkg/prowgen/testdata/zz_fixture_TestGenerateJobs_cluster_label_for_periodic.yaml
pkg/prowgen/testdata/zz_fixture_TestGenerateJobs_cluster_label_for_postsubmit.yaml
pkg/prowgen/testdata/zz_fixture_TestGenerateJobs_cluster_label_for_presubmit.yaml
pkg/prowgen/testdata/zz_fixture_TestGenerateJobs_disabled_rehearsals_at_job_level.yaml
pkg/prowgen/testdata/zz_fixture_TestGenerateJobs_disabled_rehearsals_at_repo_level.yaml
pkg/prowgen/testdata/zz_fixture_TestGenerateJobs_images_job_is_configured_for_slack_reporting.yaml
pkg/prowgen/testdata/zz_fixture_TestGenerateJobs_kvm_label.yaml
pkg/prowgen/testdata/zz_fixture_TestGenerateJobs_multiarch_postsubmit_images.yaml
pkg/prowgen/testdata/zz_fixture_TestGenerateJobs_multiarch_test_job.yaml
pkg/prowgen/testdata/zz_fixture_TestGenerateJobs_no_Promotion_configuration_has_no_branch_job.yaml
pkg/prowgen/testdata/zz_fixture_TestGenerateJobs_operator_section_creates_bundle_with_capabilities.yaml
pkg/prowgen/testdata/zz_fixture_TestGenerateJobs_operator_section_creates_ci_index_my_bundle_presubmit_job.yaml
pkg/prowgen/testdata/zz_fixture_TestGenerateJobs_operator_section_creates_ci_index_presubmit_job.yaml
pkg/prowgen/testdata/zz_fixture_TestGenerateJobs_operator_section_without_index_creates_ci_index_my_bundle_presubmit_job.yaml
pkg/prowgen/testdata/zz_fixture_TestGenerateJobs_periodic_presubmit_with_capabilities.yaml
pkg/prowgen/testdata/zz_fixture_TestGenerateJobs_periodic_with_capabilities.yaml
pkg/prowgen/testdata/zz_fixture_TestGenerateJobs_periodic_with_presubmit.yaml
pkg/prowgen/testdata/zz_fixture_TestGenerateJobs_promotion_postsubmit_and_periodic_.yaml
pkg/prowgen/testdata/zz_fixture_TestGenerateJobs_sharded_presubmit.yaml
pkg/prowgen/testdata/zz_fixture_TestGenerateJobs_template_test.yaml
pkg/prowgen/testdata/zz_fixture_TestGenerateJobs_two_tests_and_empty_Images_so_only_two_test_presubmits_are_generated.yaml
pkg/prowgen/testdata/zz_fixture_TestGenerateJobs_two_tests_and_empty_Images_with_one_test_configured_as_a_postsubmit.yaml
pkg/prowgen/testdata/zz_fixture_TestGenerateJobs_two_tests_and_nonempty_Images_so_two_test_presubmits_and_images_pre_postsubmits_are_generated_.yaml
pkg/prowgen/testdata/zz_fixture_TestGeneratePeriodicForTest_periodic_for_a_test_in_a_variant_config.yaml
pkg/prowgen/testdata/zz_fixture_TestGeneratePeriodicForTest_periodic_for_a_test_with_retry.yaml
pkg/prowgen/testdata/zz_fixture_TestGeneratePeriodicForTest_periodic_for_standard_test.yaml
pkg/prowgen/testdata/zz_fixture_TestGeneratePeriodicForTest_periodic_using_interval.yaml
pkg/prowgen/testdata/zz_fixture_TestGeneratePeriodicForTest_periodic_using_minimum_interval.yaml
pkg/prowgen/testdata/zz_fixture_TestGeneratePeriodicForTest_periodic_with_capabilities.yaml
pkg/prowgen/testdata/zz_fixture_TestGeneratePeriodicForTest_periodic_with_disabled_rehearsal.yaml
pkg/prowgen/testdata/zz_fixture_TestGeneratePostSubmitForTest_Lowercase_org_repo_and_branch.yaml
pkg/prowgen/testdata/zz_fixture_TestGeneratePostSubmitForTest_Uppercase_org__repo_and_branch.yaml
pkg/prowgen/testdata/zz_fixture_TestGeneratePostSubmitForTest_postsubmit_with_capabilities.yaml
pkg/prowgen/testdata/zz_fixture_TestGeneratePostSubmitForTest_postsubmit_with_run_if_changed.yaml
pkg/prowgen/testdata/zz_fixture_TestGeneratePostSubmitForTest_postsubmit_with_skip_if_only_changed.yaml
pkg/prowgen/testdata/zz_fixture_TestGeneratePresubmitForTest_capabilities_added.yaml
pkg/prowgen/testdata/zz_fixture_TestGeneratePresubmitForTest_optional_presubmit.yaml
pkg/prowgen/testdata/zz_fixture_TestGeneratePresubmitForTest_presubmit_for_a_test_in_a_variant_config.yaml
pkg/prowgen/testdata/zz_fixture_TestGeneratePresubmitForTest_presubmit_for_standard_test.yaml
pkg/prowgen/testdata/zz_fixture_TestGeneratePresubmitForTest_presubmit_with_always_run_but_optional_true.yaml
pkg/prowgen/testdata/zz_fixture_TestGeneratePresubmitForTest_presubmit_with_always_run_but_pipeline_run_if_changed_set.yaml
pkg/prowgen/testdata/zz_fixture_TestGeneratePresubmitForTest_presubmit_with_always_run_but_pipeline_skip_if_only_changed_set.yaml
pkg/prowgen/testdata/zz_fixture_TestGeneratePresubmitForTest_presubmit_with_always_run_but_run_if_changed_set.yaml
pkg/prowgen/testdata/zz_fixture_TestGeneratePresubmitForTest_presubmit_with_always_run_false.yaml
pkg/prowgen/testdata/zz_fixture_TestGeneratePresubmitForTest_presubmit_with_always_run_false_and_pipeline_run_if_changed.yaml
pkg/prowgen/testdata/zz_fixture_TestGeneratePresubmitForTest_presubmit_with_always_run_false_and_pipeline_skip_if_only_changed.yaml
pkg/prowgen/testdata/zz_fixture_TestGeneratePresubmitForTest_presubmit_with_run_if_changed.yaml
pkg/prowgen/testdata/zz_fixture_TestGeneratePresubmitForTest_presubmit_with_skip_if_only_changed.yaml
pkg/prowgen/testdata/zz_fixture_TestGeneratePresubmitForTest_rehearsal_disabled.yaml
pkg/prowgen/testdata/zz_fixture_TestGitHubToken_podspec_for_private_repo__reusing_Prow_s_volume_with_credentials.yaml
pkg/prowgen/testdata/zz_fixture_TestGitHubToken_podspec_for_private_repo_without_reusing_Prow_s_volume_with_credentials.yaml
pkg/prowgen/testdata/zz_fixture_TestInjectTestFrom_inject_coordinates_with_variant.yaml
pkg/prowgen/testdata/zz_fixture_TestInjectTestFrom_inject_coordinates_without_variant.yaml
pkg/prowgen/testdata/zz_fixture_TestLeaseClient_secret_is_added.yaml
pkg/prowgen/testdata/zz_fixture_TestMiscellaneous_Cluster.yaml
pkg/prowgen/testdata/zz_fixture_TestMiscellaneous_PathAlias.yaml
pkg/prowgen/testdata/zz_fixture_TestMiscellaneous_Rehearsable.yaml
pkg/prowgen/testdata/zz_fixture_TestMiscellaneous_TestName.yaml
pkg/prowgen/testdata/zz_fixture_TestMiscellaneous_WithLabel.yaml
pkg/prowgen/testdata/zz_fixture_TestNewCiOperatorPodSpecGenerator_defaults_repo.yaml
pkg/prowgen/testdata/zz_fixture_TestNewCiOperatorPodSpecGenerator_no_parameter_is_added_when_variant_is_empty.yaml
pkg/prowgen/testdata/zz_fixture_TestNewCiOperatorPodSpecGenerator_parameter_is_added_for_variant.yaml
pkg/prowgen/testdata/zz_fixture_TestNewProwJobBaseBuilderForTest_OpenshiftAnsibleClusterTestConfiguration.yaml
pkg/prowgen/testdata/zz_fixture_TestNewProwJobBaseBuilderForTest_OpenshiftAnsibleCustomClusterTestConfiguration.yaml
pkg/prowgen/testdata/zz_fixture_TestNewProwJobBaseBuilderForTest_OpenshiftInstallerClusterTestConfiguration.yaml
pkg/prowgen/testdata/zz_fixture_TestNewProwJobBaseBuilderForTest_OpenshiftInstallerCustomTestImageClusterTestConfiguration.yaml
pkg/prowgen/testdata/zz_fixture_TestNewProwJobBaseBuilderForTest_OpenshiftInstallerUPIClusterTestConfiguration.yaml
pkg/prowgen/testdata/zz_fixture_TestNewProwJobBaseBuilderForTest_job_excluded_by_patterns_should_not_have_slack_reporter_config.yaml
pkg/prowgen/testdata/zz_fixture_TestNewProwJobBaseBuilderForTest_literal_multi_stage_test.yaml
pkg/prowgen/testdata/zz_fixture_TestNewProwJobBaseBuilderForTest_multi_stage_test.yaml
pkg/prowgen/testdata/zz_fixture_TestNewProwJobBaseBuilderForTest_multi_stage_test_with_CSI_enabled.yaml
pkg/prowgen/testdata/zz_fixture_TestNewProwJobBaseBuilderForTest_multi_stage_test_with_claim.yaml
pkg/prowgen/testdata/zz_fixture_TestNewProwJobBaseBuilderForTest_multi_stage_test_with_cluster_profile.yaml
pkg/prowgen/testdata/zz_fixture_TestNewProwJobBaseBuilderForTest_multi_stage_test_with_releases.yaml
pkg/prowgen/testdata/zz_fixture_TestNewProwJobBaseBuilderForTest_simple_container_based_test.yaml
pkg/prowgen/testdata/zz_fixture_TestNewProwJobBaseBuilderForTest_simple_container_based_test_with_cluster.yaml
pkg/prowgen/testdata/zz_fixture_TestNewProwJobBaseBuilderForTest_simple_container_based_test_with_secret.yaml
pkg/prowgen/testdata/zz_fixture_TestNewProwJobBaseBuilderForTest_simple_container_based_test_with_secrets.yaml
pkg/prowgen/testdata/zz_fixture_TestNewProwJobBaseBuilderForTest_simple_container_based_test_with_timeout.yaml
pkg/prowgen/testdata/zz_fixture_TestNewProwJobBaseBuilderForTest_simple_container_based_test_with_timeout_and_no_decoration.yaml
pkg/prowgen/testdata/zz_fixture_TestNewProwJobBaseBuilderForTest_simple_test_with_CSI_enabled.yaml
pkg/prowgen/testdata/zz_fixture_TestNewProwJobBaseBuilderForTest_simple_with_slack_reporter_config.yaml
pkg/prowgen/testdata/zz_fixture_TestPromotion_secret_and_parameters_are_added.yaml
pkg/prowgen/testdata/zz_fixture_TestProwJobBaseBuilder_default_job_without_further_configuration.yaml
pkg/prowgen/testdata/zz_fixture_TestProwJobBaseBuilder_default_job_without_further_configuration__including_podspec.yaml
pkg/prowgen/testdata/zz_fixture_TestProwJobBaseBuilder_job_with_a_buildroot_in_of_openshift_release_main__does_not_have_no_builds__label.yaml
pkg/prowgen/testdata/zz_fixture_TestProwJobBaseBuilder_job_with_a_variant.yaml
pkg/prowgen/testdata/zz_fixture_TestProwJobBaseBuilder_job_with_a_variant__including_podspec.yaml
pkg/prowgen/testdata/zz_fixture_TestProwJobBaseBuilder_job_with_binary_build_in_openshift_release_main__does_not_have_no_builds__label.yaml
pkg/prowgen/testdata/zz_fixture_TestProwJobBaseBuilder_job_with_configured_prefix.yaml
pkg/prowgen/testdata/zz_fixture_TestProwJobBaseBuilder_job_with_image_builds_in_of_openshift_release_main__does_not_have_no_builds__label.yaml
pkg/prowgen/testdata/zz_fixture_TestProwJobBaseBuilder_job_with_latest_release_that_is_a_candidate__has_job_release__label.yaml
pkg/prowgen/testdata/zz_fixture_TestProwJobBaseBuilder_job_with_latest_release_that_is_not_a_candidate__does_not_have_job_release__label.yaml
pkg/prowgen/testdata/zz_fixture_TestProwJobBaseBuilder_job_with_no_builds_in_openshift_release_main__does_have_no_builds__label.yaml
pkg/prowgen/testdata/zz_fixture_TestProwJobBaseBuilder_job_with_no_builds_outside_of_openshift_release_main__does_not_have_no_builds__label.yaml
pkg/prowgen/testdata/zz_fixture_TestProwJobBaseBuilder_job_with_not_a_latest_release_that_is_a_candidate__does_not_have_job_release__label.yaml
pkg/prowgen/testdata/zz_fixture_TestProwJobBaseBuilder_job_with_test_binary_build_in_of_openshift_release_main__does_not_have_no_builds__label.yaml
pkg/prowgen/testdata/zz_fixture_TestProwJobBaseBuilder_private_job_with_cloning__including_podspec.yaml
pkg/prowgen/testdata/zz_fixture_TestProwJobBaseBuilder_private_job_without_cloning__including_podspec.yaml
pkg/prowgen/testdata/zz_fixture_TestReleaseInitial_add_release_initial.yaml
pkg/prowgen/testdata/zz_fixture_TestReleaseLatest_add_release_latest.yaml
pkg/prowgen/testdata/zz_fixture_TestReleaseRpms_envvar_additional_envvar_generated_for_template.yaml
pkg/prowgen/testdata/zz_fixture_TestSecrets_empty_list_is_a_nop.yaml
pkg/prowgen/testdata/zz_fixture_TestSecrets_multiple_secrets.yaml
pkg/prowgen/testdata/zz_fixture_TestSecrets_one_secret.yaml
pkg/prowgen/testdata/zz_fixture_TestTargetAdditionalSuffix_target_additional_suffix_is_added.yaml
pkg/prowgen/testdata/zz_fixture_TestTargets_multiple_targets.yaml
pkg/prowgen/testdata/zz_fixture_TestTargets_single_target.yaml
pkg/prowgen/testdata/zz_fixture_TestTemplate_different_template_with_command.yaml
pkg/prowgen/testdata/zz_fixture_TestTemplate_template_with_a_custom_test_image.yaml
pkg/prowgen/testdata/zz_fixture_TestTemplate_template_with_command.yaml
pkg/prowgen/testdata/zz_fixture_TestTemplate_template_with_different_command.yaml

💤 Files with no reviewable changes (27)

pkg/prowgen/testdata/zz_fixture_TestPromotion_secret_and_parameters_are_added.yaml
pkg/prowgen/testdata/zz_fixture_TestNewCiOperatorPodSpecGenerator_parameter_is_added_for_variant.yaml
pkg/prowgen/testdata/zz_fixture_TestReleaseInitial_add_release_initial.yaml
pkg/prowgen/testdata/zz_fixture_TestClaims_secret_is_added.yaml
pkg/prowgen/testdata/zz_fixture_TestTemplate_different_template_with_command.yaml
pkg/prowgen/testdata/zz_fixture_TestInjectTestFrom_inject_coordinates_without_variant.yaml
pkg/prowgen/testdata/zz_fixture_TestNewCiOperatorPodSpecGenerator_no_parameter_is_added_when_variant_is_empty.yaml
pkg/prowgen/testdata/zz_fixture_TestTargets_single_target.yaml
pkg/prowgen/testdata/zz_fixture_TestCIPullSecret_secret_is_added.yaml
pkg/prowgen/testdata/zz_fixture_TestReleaseRpms_envvar_additional_envvar_generated_for_template.yaml
pkg/prowgen/testdata/zz_fixture_TestSecrets_one_secret.yaml
pkg/prowgen/testdata/zz_fixture_TestGitHubToken_podspec_for_private_repo_without_reusing_Prow_s_volume_with_credentials.yaml
pkg/prowgen/testdata/zz_fixture_TestSecrets_multiple_secrets.yaml
pkg/prowgen/testdata/zz_fixture_TestTemplate_template_with_a_custom_test_image.yaml
pkg/prowgen/testdata/zz_fixture_TestGitHubToken_podspec_for_private_repo__reusing_Prow_s_volume_with_credentials.yaml
pkg/prowgen/testdata/zz_fixture_TestInjectTestFrom_inject_coordinates_with_variant.yaml
pkg/prowgen/testdata/zz_fixture_TestTargetAdditionalSuffix_target_additional_suffix_is_added.yaml
pkg/prowgen/testdata/zz_fixture_TestGSMConfig_add_gsm_config_volume_and_mount.yaml
pkg/prowgen/testdata/zz_fixture_TestCustomHashInput_custom_hash_inputs_are_added.yaml
pkg/prowgen/testdata/zz_fixture_TestSecrets_empty_list_is_a_nop.yaml
pkg/prowgen/testdata/zz_fixture_TestLeaseClient_secret_is_added.yaml
pkg/prowgen/testdata/zz_fixture_TestReleaseLatest_add_release_latest.yaml
pkg/prowgen/testdata/zz_fixture_TestNewCiOperatorPodSpecGenerator_defaults_repo.yaml
pkg/prowgen/testdata/zz_fixture_TestTemplate_template_with_different_command.yaml
pkg/prowgen/testdata/zz_fixture_TestTemplate_template_with_command.yaml
pkg/prowgen/testdata/zz_fixture_TestCustomHashInput_custom_hash_input_is_added.yaml
pkg/prowgen/testdata/zz_fixture_TestTargets_multiple_targets.yaml

Copilot

Pull request overview

This PR updates prowgen to rely on a Prow preset for mounting registry pull credentials, rather than hardcoding the pull-secret volume/volumeMount into the generated PodSpec, and adds a label to all prowgen-generated jobs so the preset can be applied.

Changes:

Remove the pull-secret volume and volumeMount from defaultPodSpec so it can be provided via a Prow preset.
Add a new job label (preset-ci-operator-image-pull: "true") to prowgen-generated jobs to trigger the preset.
Update test fixtures to reflect the removed volume/mount and the newly added label.

Reviewed changes

Copilot reviewed 137 out of 137 changed files in this pull request and generated 1 comment.

Show a summary per file

File	Description
pkg/prowgen/podspec.go	Removes hardcoded `pull-secret` volume/mount from the default PodSpec (now expected via preset).
pkg/prowgen/jobbase.go	Adds the preset-trigger label to the base labels for generated jobs.
pkg/api/constant.go	Introduces a constant for the new preset-trigger label key.
pkg/prowgen/testdata/zz_fixture_TestTemplate_template_with_different_command.yaml	Fixture update: remove `pull-secret` mount/volume.
pkg/prowgen/testdata/zz_fixture_TestTemplate_template_with_command.yaml	Fixture update: remove `pull-secret` mount/volume.
pkg/prowgen/testdata/zz_fixture_TestTemplate_template_with_a_custom_test_image.yaml	Fixture update: remove `pull-secret` mount/volume.
pkg/prowgen/testdata/zz_fixture_TestTemplate_different_template_with_command.yaml	Fixture update: remove `pull-secret` mount/volume.
pkg/prowgen/testdata/zz_fixture_TestTargets_single_target.yaml	Fixture update: remove `pull-secret` mount/volume.
pkg/prowgen/testdata/zz_fixture_TestTargets_multiple_targets.yaml	Fixture update: remove `pull-secret` mount/volume.
pkg/prowgen/testdata/zz_fixture_TestTargetAdditionalSuffix_target_additional_suffix_is_added.yaml	Fixture update: remove `pull-secret` mount/volume.
pkg/prowgen/testdata/zz_fixture_TestSecrets_one_secret.yaml	Fixture update: remove `pull-secret` mount/volume.
pkg/prowgen/testdata/zz_fixture_TestSecrets_multiple_secrets.yaml	Fixture update: remove `pull-secret` mount/volume.
pkg/prowgen/testdata/zz_fixture_TestSecrets_empty_list_is_a_nop.yaml	Fixture update: remove `pull-secret` mount/volume.
pkg/prowgen/testdata/zz_fixture_TestReleaseRpms_envvar_additional_envvar_generated_for_template.yaml	Fixture update: remove `pull-secret` mount/volume.
pkg/prowgen/testdata/zz_fixture_TestReleaseLatest_add_release_latest.yaml	Fixture update: remove `pull-secret` mount/volume.
pkg/prowgen/testdata/zz_fixture_TestReleaseInitial_add_release_initial.yaml	Fixture update: remove `pull-secret` mount/volume.
pkg/prowgen/testdata/zz_fixture_TestProwJobBaseBuilder_private_job_without_cloning__including_podspec.yaml	Fixture update: add preset label; remove `pull-secret` mount/volume.
pkg/prowgen/testdata/zz_fixture_TestProwJobBaseBuilder_private_job_with_cloning__including_podspec.yaml	Fixture update: add preset label; remove `pull-secret` mount/volume.
pkg/prowgen/testdata/zz_fixture_TestProwJobBaseBuilder_job_with_test_binary_build_in_of_openshift_release_main__does_not_have_no_builds__label.yaml	Fixture update: add preset label.
pkg/prowgen/testdata/zz_fixture_TestProwJobBaseBuilder_job_with_not_a_latest_release_that_is_a_candidate__does_not_have_job_release__label.yaml	Fixture update: add preset label.
pkg/prowgen/testdata/zz_fixture_TestProwJobBaseBuilder_job_with_no_builds_outside_of_openshift_release_main__does_not_have_no_builds__label.yaml	Fixture update: add preset label.
pkg/prowgen/testdata/zz_fixture_TestProwJobBaseBuilder_job_with_no_builds_in_openshift_release_main__does_have_no_builds__label.yaml	Fixture update: add preset label alongside existing labels.
pkg/prowgen/testdata/zz_fixture_TestProwJobBaseBuilder_job_with_latest_release_that_is_not_a_candidate__does_not_have_job_release__label.yaml	Fixture update: add preset label.
pkg/prowgen/testdata/zz_fixture_TestProwJobBaseBuilder_job_with_latest_release_that_is_a_candidate__has_job_release__label.yaml	Fixture update: add preset label alongside existing labels.
pkg/prowgen/testdata/zz_fixture_TestProwJobBaseBuilder_job_with_image_builds_in_of_openshift_release_main__does_not_have_no_builds__label.yaml	Fixture update: add preset label.
pkg/prowgen/testdata/zz_fixture_TestProwJobBaseBuilder_job_with_configured_prefix.yaml	Fixture update: add preset label.
pkg/prowgen/testdata/zz_fixture_TestProwJobBaseBuilder_job_with_binary_build_in_openshift_release_main__does_not_have_no_builds__label.yaml	Fixture update: add preset label.
pkg/prowgen/testdata/zz_fixture_TestProwJobBaseBuilder_job_with_a_variant__including_podspec.yaml	Fixture update: add preset label; remove `pull-secret` mount/volume.
pkg/prowgen/testdata/zz_fixture_TestProwJobBaseBuilder_job_with_a_variant.yaml	Fixture update: add preset label.
pkg/prowgen/testdata/zz_fixture_TestProwJobBaseBuilder_job_with_a_buildroot_in_of_openshift_release_main__does_not_have_no_builds__label.yaml	Fixture update: add preset label.
pkg/prowgen/testdata/zz_fixture_TestProwJobBaseBuilder_default_job_without_further_configuration__including_podspec.yaml	Fixture update: add preset label; remove `pull-secret` mount/volume.
pkg/prowgen/testdata/zz_fixture_TestProwJobBaseBuilder_default_job_without_further_configuration.yaml	Fixture update: add preset label.
pkg/prowgen/testdata/zz_fixture_TestPromotion_secret_and_parameters_are_added.yaml	Fixture update: remove `pull-secret` mount/volume.
pkg/prowgen/testdata/zz_fixture_TestNewProwJobBaseBuilderForTest_simple_with_slack_reporter_config.yaml	Fixture update: add preset label; remove `pull-secret` mount/volume.
pkg/prowgen/testdata/zz_fixture_TestNewProwJobBaseBuilderForTest_simple_test_with_CSI_enabled.yaml	Fixture update: add preset label; remove `pull-secret` mount/volume.
pkg/prowgen/testdata/zz_fixture_TestNewProwJobBaseBuilderForTest_simple_container_based_test_with_timeout_and_no_decoration.yaml	Fixture update: add preset label; remove `pull-secret` mount/volume.
pkg/prowgen/testdata/zz_fixture_TestNewProwJobBaseBuilderForTest_simple_container_based_test_with_timeout.yaml	Fixture update: add preset label; remove `pull-secret` mount/volume.
pkg/prowgen/testdata/zz_fixture_TestNewProwJobBaseBuilderForTest_simple_container_based_test_with_secrets.yaml	Fixture update: add preset label; remove `pull-secret` mount/volume.
pkg/prowgen/testdata/zz_fixture_TestNewProwJobBaseBuilderForTest_simple_container_based_test_with_secret.yaml	Fixture update: add preset label; remove `pull-secret` mount/volume.
pkg/prowgen/testdata/zz_fixture_TestNewProwJobBaseBuilderForTest_simple_container_based_test_with_cluster.yaml	Fixture update: add preset label; remove `pull-secret` mount/volume.
pkg/prowgen/testdata/zz_fixture_TestNewProwJobBaseBuilderForTest_simple_container_based_test.yaml	Fixture update: add preset label; remove `pull-secret` mount/volume.
pkg/prowgen/testdata/zz_fixture_TestNewProwJobBaseBuilderForTest_multi_stage_test_with_releases.yaml	Fixture update: add preset label; remove `pull-secret` mount/volume.
pkg/prowgen/testdata/zz_fixture_TestNewProwJobBaseBuilderForTest_multi_stage_test_with_cluster_profile.yaml	Fixture update: add preset label; remove `pull-secret` mount/volume.
pkg/prowgen/testdata/zz_fixture_TestNewProwJobBaseBuilderForTest_multi_stage_test_with_claim.yaml	Fixture update: add preset label; remove `pull-secret` mount/volume.
pkg/prowgen/testdata/zz_fixture_TestNewProwJobBaseBuilderForTest_multi_stage_test_with_CSI_enabled.yaml	Fixture update: add preset label; remove `pull-secret` mount/volume.
pkg/prowgen/testdata/zz_fixture_TestNewProwJobBaseBuilderForTest_multi_stage_test.yaml	Fixture update: add preset label; remove `pull-secret` mount/volume.
pkg/prowgen/testdata/zz_fixture_TestNewProwJobBaseBuilderForTest_literal_multi_stage_test.yaml	Fixture update: add preset label; remove `pull-secret` mount/volume.
pkg/prowgen/testdata/zz_fixture_TestNewProwJobBaseBuilderForTest_job_excluded_by_patterns_should_not_have_slack_reporter_config.yaml	Fixture update: add preset label; remove `pull-secret` mount/volume.
pkg/prowgen/testdata/zz_fixture_TestNewProwJobBaseBuilderForTest_OpenshiftInstallerUPIClusterTestConfiguration.yaml	Fixture update: add preset label; remove `pull-secret` mount/volume.
pkg/prowgen/testdata/zz_fixture_TestNewProwJobBaseBuilderForTest_OpenshiftInstallerCustomTestImageClusterTestConfiguration.yaml	Fixture update: add preset label; remove `pull-secret` mount/volume.
pkg/prowgen/testdata/zz_fixture_TestNewProwJobBaseBuilderForTest_OpenshiftInstallerClusterTestConfiguration.yaml	Fixture update: add preset label; remove `pull-secret` mount/volume.
pkg/prowgen/testdata/zz_fixture_TestNewProwJobBaseBuilderForTest_OpenshiftAnsibleCustomClusterTestConfiguration.yaml	Fixture update: add preset label; remove `pull-secret` mount/volume.
pkg/prowgen/testdata/zz_fixture_TestNewProwJobBaseBuilderForTest_OpenshiftAnsibleClusterTestConfiguration.yaml	Fixture update: add preset label; remove `pull-secret` mount/volume.
pkg/prowgen/testdata/zz_fixture_TestNewCiOperatorPodSpecGenerator_parameter_is_added_for_variant.yaml	Fixture update: remove `pull-secret` mount/volume.
pkg/prowgen/testdata/zz_fixture_TestNewCiOperatorPodSpecGenerator_no_parameter_is_added_when_variant_is_empty.yaml	Fixture update: remove `pull-secret` mount/volume.
pkg/prowgen/testdata/zz_fixture_TestNewCiOperatorPodSpecGenerator_defaults_repo.yaml	Fixture update: remove `pull-secret` mount/volume.
pkg/prowgen/testdata/zz_fixture_TestMiscellaneous_WithLabel.yaml	Fixture update: add preset label alongside existing labels.
pkg/prowgen/testdata/zz_fixture_TestMiscellaneous_TestName.yaml	Fixture update: add preset label.
pkg/prowgen/testdata/zz_fixture_TestMiscellaneous_Rehearsable.yaml	Fixture update: add preset label alongside existing labels.
pkg/prowgen/testdata/zz_fixture_TestMiscellaneous_PathAlias.yaml	Fixture update: add preset label.
pkg/prowgen/testdata/zz_fixture_TestMiscellaneous_Cluster.yaml	Fixture update: add preset label.
pkg/prowgen/testdata/zz_fixture_TestLeaseClient_secret_is_added.yaml	Fixture update: remove `pull-secret` mount/volume.
pkg/prowgen/testdata/zz_fixture_TestInjectTestFrom_inject_coordinates_without_variant.yaml	Fixture update: remove `pull-secret` mount/volume.
pkg/prowgen/testdata/zz_fixture_TestInjectTestFrom_inject_coordinates_with_variant.yaml	Fixture update: remove `pull-secret` mount/volume.
pkg/prowgen/testdata/zz_fixture_TestGitHubToken_podspec_for_private_repo_without_reusing_Prow_s_volume_with_credentials.yaml	Fixture update: remove `pull-secret` mount/volume.
pkg/prowgen/testdata/zz_fixture_TestGitHubToken_podspec_for_private_repo__reusing_Prow_s_volume_with_credentials.yaml	Fixture update: remove `pull-secret` mount/volume.
pkg/prowgen/testdata/zz_fixture_TestGeneratePresubmitForTest_rehearsal_disabled.yaml	Fixture update: add preset label.
pkg/prowgen/testdata/zz_fixture_TestGeneratePresubmitForTest_presubmit_with_skip_if_only_changed.yaml	Fixture update: add preset label.
pkg/prowgen/testdata/zz_fixture_TestGeneratePresubmitForTest_presubmit_with_run_if_changed.yaml	Fixture update: add preset label.
pkg/prowgen/testdata/zz_fixture_TestGeneratePresubmitForTest_presubmit_with_always_run_false_and_pipeline_skip_if_only_changed.yaml	Fixture update: add preset label.
pkg/prowgen/testdata/zz_fixture_TestGeneratePresubmitForTest_presubmit_with_always_run_false_and_pipeline_run_if_changed.yaml	Fixture update: add preset label.
pkg/prowgen/testdata/zz_fixture_TestGeneratePresubmitForTest_presubmit_with_always_run_false.yaml	Fixture update: add preset label.
pkg/prowgen/testdata/zz_fixture_TestGeneratePresubmitForTest_presubmit_with_always_run_but_run_if_changed_set.yaml	Fixture update: add preset label.
pkg/prowgen/testdata/zz_fixture_TestGeneratePresubmitForTest_presubmit_with_always_run_but_pipeline_skip_if_only_changed_set.yaml	Fixture update: add preset label.
pkg/prowgen/testdata/zz_fixture_TestGeneratePresubmitForTest_presubmit_with_always_run_but_pipeline_run_if_changed_set.yaml	Fixture update: add preset label.
pkg/prowgen/testdata/zz_fixture_TestGeneratePresubmitForTest_presubmit_with_always_run_but_optional_true.yaml	Fixture update: add preset label.
pkg/prowgen/testdata/zz_fixture_TestGeneratePresubmitForTest_presubmit_for_standard_test.yaml	Fixture update: add preset label.
pkg/prowgen/testdata/zz_fixture_TestGeneratePresubmitForTest_presubmit_for_a_test_in_a_variant_config.yaml	Fixture update: add preset label.
pkg/prowgen/testdata/zz_fixture_TestGeneratePresubmitForTest_optional_presubmit.yaml	Fixture update: add preset label.
pkg/prowgen/testdata/zz_fixture_TestGeneratePresubmitForTest_capabilities_added.yaml	Fixture update: add preset label.
pkg/prowgen/testdata/zz_fixture_TestGeneratePostSubmitForTest_postsubmit_with_skip_if_only_changed.yaml	Fixture update: add preset label.
pkg/prowgen/testdata/zz_fixture_TestGeneratePostSubmitForTest_postsubmit_with_run_if_changed.yaml	Fixture update: add preset label.
pkg/prowgen/testdata/zz_fixture_TestGeneratePostSubmitForTest_postsubmit_with_capabilities.yaml	Fixture update: add preset label.
pkg/prowgen/testdata/zz_fixture_TestGeneratePostSubmitForTest_Uppercase_org__repo_and_branch.yaml	Fixture update: add preset label.
pkg/prowgen/testdata/zz_fixture_TestGeneratePostSubmitForTest_Lowercase_org_repo_and_branch.yaml	Fixture update: add preset label.
pkg/prowgen/testdata/zz_fixture_TestGeneratePeriodicForTest_periodic_with_disabled_rehearsal.yaml	Fixture update: add preset label.
pkg/prowgen/testdata/zz_fixture_TestGeneratePeriodicForTest_periodic_with_capabilities.yaml	Fixture update: add preset label.
pkg/prowgen/testdata/zz_fixture_TestGeneratePeriodicForTest_periodic_using_minimum_interval.yaml	Fixture update: add preset label.
pkg/prowgen/testdata/zz_fixture_TestGeneratePeriodicForTest_periodic_using_interval.yaml	Fixture update: add preset label.
pkg/prowgen/testdata/zz_fixture_TestGeneratePeriodicForTest_periodic_for_standard_test.yaml	Fixture update: add preset label.
pkg/prowgen/testdata/zz_fixture_TestGeneratePeriodicForTest_periodic_for_a_test_with_retry.yaml	Fixture update: add preset label.
pkg/prowgen/testdata/zz_fixture_TestGeneratePeriodicForTest_periodic_for_a_test_in_a_variant_config.yaml	Fixture update: add preset label.
pkg/prowgen/testdata/zz_fixture_TestGenerateJobs_two_tests_and_nonempty_Images_so_two_test_presubmits_and_images_pre_postsubmits_are_generated_.yaml	Fixture update: add preset label(s).
pkg/prowgen/testdata/zz_fixture_TestGenerateJobs_two_tests_and_empty_Images_with_one_test_configured_as_a_postsubmit.yaml	Fixture update: add preset label(s).
pkg/prowgen/testdata/zz_fixture_TestGenerateJobs_two_tests_and_empty_Images_so_only_two_test_presubmits_are_generated.yaml	Fixture update: add preset label(s).
pkg/prowgen/testdata/zz_fixture_TestGenerateJobs_template_test.yaml	Fixture update: add preset label.
pkg/prowgen/testdata/zz_fixture_TestGenerateJobs_sharded_presubmit.yaml	Fixture update: add preset label(s).
pkg/prowgen/testdata/zz_fixture_TestGenerateJobs_promotion_postsubmit_and_periodic_.yaml	Fixture update: add preset label(s); remove `pull-secret` mount/volume.
pkg/prowgen/testdata/zz_fixture_TestGenerateJobs_periodic_with_presubmit.yaml	Fixture update: add preset label(s); remove `pull-secret` mount/volume.
pkg/prowgen/testdata/zz_fixture_TestGenerateJobs_periodic_with_capabilities.yaml	Fixture update: add preset label; remove `pull-secret` mount/volume.
pkg/prowgen/testdata/zz_fixture_TestGenerateJobs_periodic_presubmit_with_capabilities.yaml	Fixture update: add preset label(s); remove `pull-secret` mount/volume.
pkg/prowgen/testdata/zz_fixture_TestGenerateJobs_operator_section_without_index_creates_ci_index_my_bundle_presubmit_job.yaml	Fixture update: add preset label; remove `pull-secret` mount/volume.
pkg/prowgen/testdata/zz_fixture_TestGenerateJobs_operator_section_creates_ci_index_presubmit_job.yaml	Fixture update: add preset label.
pkg/prowgen/testdata/zz_fixture_TestGenerateJobs_operator_section_creates_ci_index_my_bundle_presubmit_job.yaml	Fixture update: add preset label; remove `pull-secret` mount/volume.
pkg/prowgen/testdata/zz_fixture_TestGenerateJobs_operator_section_creates_bundle_with_capabilities.yaml	Fixture update: add preset label; remove `pull-secret` mount/volume.
pkg/prowgen/testdata/zz_fixture_TestGenerateJobs_no_Promotion_configuration_has_no_branch_job.yaml	Fixture update: add preset label.
pkg/prowgen/testdata/zz_fixture_TestGenerateJobs_multiarch_test_job.yaml	Fixture update: add preset label.
pkg/prowgen/testdata/zz_fixture_TestGenerateJobs_multiarch_postsubmit_images.yaml	Fixture update: add preset label(s).
pkg/prowgen/testdata/zz_fixture_TestGenerateJobs_kvm_label.yaml	Fixture update: add preset label.
pkg/prowgen/testdata/zz_fixture_TestGenerateJobs_images_job_is_configured_for_slack_reporting.yaml	Fixture update: add preset label(s).
pkg/prowgen/testdata/zz_fixture_TestGenerateJobs_disabled_rehearsals_at_repo_level.yaml	Fixture update: add preset label(s); remove `pull-secret` mount/volume.
pkg/prowgen/testdata/zz_fixture_TestGenerateJobs_disabled_rehearsals_at_job_level.yaml	Fixture update: add preset label(s); remove `pull-secret` mount/volume.
pkg/prowgen/testdata/zz_fixture_TestGenerateJobs_cluster_label_for_presubmit.yaml	Fixture update: add preset label.
pkg/prowgen/testdata/zz_fixture_TestGenerateJobs_cluster_label_for_postsubmit.yaml	Fixture update: add preset label.
pkg/prowgen/testdata/zz_fixture_TestGenerateJobs_cluster_label_for_periodic.yaml	Fixture update: add preset label; remove `pull-secret` mount/volume.
pkg/prowgen/testdata/zz_fixture_TestGenerateJobs_Promotion_configuration_causes_promote_job_with_unique_targets.yaml	Fixture update: add preset label(s); remove `pull-secret` mount/volume.
pkg/prowgen/testdata/zz_fixture_TestGenerateJobs_Promotion_configuration_causes_promote_job.yaml	Fixture update: add preset label(s).
pkg/prowgen/testdata/zz_fixture_TestGenerateJobBase_rehearsable.yaml	Fixture update: add preset label.
pkg/prowgen/testdata/zz_fixture_TestGenerateJobBase_path_alias.yaml	Fixture update: add preset label.
pkg/prowgen/testdata/zz_fixture_TestGenerateJobBase_no_special_options.yaml	Fixture update: add preset label.
pkg/prowgen/testdata/zz_fixture_TestGenerateJobBase_hidden_job_for_private_repos.yaml	Fixture update: add preset label.
pkg/prowgen/testdata/zz_fixture_TestGenerateJobBase_expose_option_set_but_not_private.yaml	Fixture update: add preset label.
pkg/prowgen/testdata/zz_fixture_TestGenerateJobBase_expose_job_for_private_repos_with_public_results.yaml	Fixture update: add preset label.
pkg/prowgen/testdata/zz_fixture_TestGenerateJobBase_config_variant.yaml	Fixture update: add preset label.
pkg/prowgen/testdata/zz_fixture_TestGSMConfig_add_gsm_config_volume_and_mount.yaml	Fixture update: remove `pull-secret` mount/volume.
pkg/prowgen/testdata/zz_fixture_TestCustomHashInput_custom_hash_inputs_are_added.yaml	Fixture update: remove `pull-secret` mount/volume.
pkg/prowgen/testdata/zz_fixture_TestCustomHashInput_custom_hash_input_is_added.yaml	Fixture update: remove `pull-secret` mount/volume.
pkg/prowgen/testdata/zz_fixture_TestClaims_secret_is_added.yaml	Fixture update: remove `pull-secret` mount/volume.
pkg/prowgen/testdata/zz_fixture_TestCIPullSecret_secret_is_added.yaml	Fixture update: remove `pull-secret` mount/volume.
cmd/ci-operator-prowgen/testdata/zz_fixture_presubmit_TestFromCIOperatorConfigToProwYaml_one_test_and_images__no_previous_jobs._Expect_test_presubmit__pre_post_submit_images_jobs.yaml	Fixture update: add preset label(s); remove `pull-secret` mount/volume.
cmd/ci-operator-prowgen/testdata/zz_fixture_presubmit_TestFromCIOperatorConfigToProwYaml_Using_a_variant_config__one_test_and_images__one_existing_job._Expect_one_presubmit__pre_post_submit_images_jobs._Existing_job_should_not_be_changed..yaml	Fixture update: add preset label(s); remove `pull-secret` mount/volume.
cmd/ci-operator-prowgen/testdata/zz_fixture_presubmit_TestFromCIOperatorConfigToProwYaml_Input_is_YAML_and_it_is_correctly_processed.yaml	Fixture update: add preset label(s); remove `pull-secret` mount/volume.
cmd/ci-operator-prowgen/testdata/zz_fixture_presubmit_TestFromCIOperatorConfigToProwYaml_Custom_test_timeout.yaml	Fixture update: add preset label(s); remove `pull-secret` mount/volume.
cmd/ci-operator-prowgen/testdata/zz_fixture_postsubmit_TestFromCIOperatorConfigToProwYaml_one_test_and_images__no_previous_jobs._Expect_test_presubmit__pre_post_submit_images_jobs.yaml	Fixture update: add preset label; remove `pull-secret` mount/volume.
cmd/ci-operator-prowgen/testdata/zz_fixture_postsubmit_TestFromCIOperatorConfigToProwYaml_Using_a_variant_config__one_test_and_images__one_existing_job._Expect_one_presubmit__pre_post_submit_images_jobs._Existing_job_should_not_be_changed..yaml	Fixture update: add preset label; remove `pull-secret` mount/volume.
cmd/ci-operator-prowgen/testdata/zz_fixture_postsubmit_TestFromCIOperatorConfigToProwYaml_Input_is_YAML_and_it_is_correctly_processed.yaml	Fixture update: add preset label; remove `pull-secret` mount/volume.
cmd/ci-operator-prowgen/testdata/zz_fixture_postsubmit_TestFromCIOperatorConfigToProwYaml_Custom_test_timeout.yaml	Fixture update: add preset label; remove `pull-secret` mount/volume.

💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.

Copilot · 2026-03-07T18:51:09Z

pkg/prowgen/podspec.go

 			VolumeMounts: []corev1.VolumeMount{
-				{
-					Name:      "pull-secret",
-					MountPath: "/etc/pull-secret",
-					ReadOnly:  true,
-				},
+				// pull-secret mount provided by preset-ci-operator-image-pull preset
 				{


pkg/prowgen/podspec.go currently imports github.com/openshift/ci-tools/pkg/api twice (once as api and once as cioperatorapi). Go rejects duplicate import paths, so this file will not compile as-is. Please keep a single import (choose one name) and update references accordingly.

Move the pull-secret volume and volumeMount from the hardcoded defaultPodSpec to a Prow preset. This is a proof of concept for using compositional Prow presets to deduplicate the ~28 lines of boilerplate volumes/mounts that are inlined into every one of the 126K+ generated Prowjob definitions. The preset is defined in openshift/release and matched via a new label added to all prowgen-generated jobs. The --image-import-pull-secret arg remains inline since presets cannot inject container args. Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>

Copilot

Pull request overview

Copilot reviewed 156 out of 156 changed files in this pull request and generated 3 comments.

💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.

Copilot · 2026-03-07T19:28:36Z

pkg/controller/prpqr_reconciler/testdata/zz_fixture_prowjobs_TestReconcile_basic_case.yaml

        - mountPath: /secrets/manifest-tool
          name: manifest-tool-local-pusher
          readOnly: true
-        - mountPath: /etc/pull-secret
-          name: pull-secret
-          readOnly: true
        - mountPath: /etc/report
          name: result-aggregator
          readOnly: true


This ProwJob fixture still runs ci-operator with --image-import-pull-secret=/etc/pull-secret/.dockerconfigjson, but the /etc/pull-secret volumeMount was removed and the ProwJob’s metadata.labels don’t include presets.ci.openshift.io/registry-pull: "true". Without the label, the registry-pull preset won’t be applied and ci-operator is likely to fail because the pull secret file won’t exist.

Copilot · 2026-03-07T19:28:36Z

cmd/multi-pr-prow-plugin/testdata/zz_fixture_TestGenerateProwJob_multiple_additional_PRs.yaml

      volumeMounts:
      - mountPath: /secrets/gcs
        name: gcs-credentials
        readOnly: true
      - mountPath: /secrets/manifest-tool
        name: manifest-tool-local-pusher
        readOnly: true
-      - mountPath: /etc/pull-secret
-        name: pull-secret
-        readOnly: true
      - mountPath: /etc/report
        name: result-aggregator
        readOnly: true


This ProwJob fixture references /etc/pull-secret/.dockerconfigjson via --image-import-pull-secret, but the /etc/pull-secret mount and volume are absent and the ProwJob metadata.labels also don’t include presets.ci.openshift.io/registry-pull: "true". The job will not receive the registry pull credentials unless that label is present (or the mount is restored).

Copilot · 2026-03-07T19:28:37Z

pkg/prowgen/podspec.go

 			Args: []string{
+				// /etc/pull-secret mount provided by registry-pull preset in Prow config
 				"--image-import-pull-secret=/etc/pull-secret/.dockerconfigjson",
 				"--gcs-upload-secret=/secrets/gcs/service-account.json",


defaultPodSpec now always passes --image-import-pull-secret=/etc/pull-secret/.dockerconfigjson, but the /etc/pull-secret volume+mount are no longer present in the spec. This will break any ProwJobs that don’t get the new registry-pull preset applied (e.g., code paths that create ProwJobs via pjutil.NewProwJob but don’t propagate JobBase.Labels). Ensure every generated ProwJob has the presets.ci.openshift.io/registry-pull: "true" label (or otherwise guarantee the mount exists) so the referenced file is present at runtime.

openshift-ci · 2026-03-09T09:27:31Z

[APPROVALNOTIFIER] This PR is APPROVED

This pull-request has been approved by: petr-muller, Prucek

The full list of commands accepted by this bot can be found here.

The pull request process is described here

Details

Needs approval from an approver in each of these files:

~~OWNERS~~ [Prucek]

Approvers can indicate their approval by writing /approve in a comment
Approvers can cancel approval by writing /approve cancel in a comment

petr-muller · 2026-03-09T12:28:02Z

/hold

oh this really needs to be tested a bit before we break all jobs

openshift-ci · 2026-03-09T23:15:57Z

New changes are detected. LGTM label has been removed.

Instead of applying the registry-pull preset globally, limit it to a small scope for production validation: - prowgen: only for openshift/cluster-version-operator on release-4.23 - prpqr: only when a PR author is petr-muller - multi-pr: only when the /testwith commenter is petr-muller The builder gains a UseRegistryPullPreset() method and a metadata-based check in Build(). When triggered, the preset label is added and the inline pull-secret volume/mount is removed via a PodSpec mutator. All other jobs retain the inline pull-secret volume unchanged. Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>

Copilot

Pull request overview

Copilot reviewed 9 out of 9 changed files in this pull request and generated 7 comments.

💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.

Copilot · 2026-03-09T23:28:50Z

pkg/prowgen/jobbase.go

+// shouldUseRegistryPullPreset returns true if the job being built should use
+// the registry-pull preset. Currently enabled for openshift/cluster-version-operator
+// on the release-4.23 branch to validate the preset mechanism.
+func (p *prowJobBaseBuilder) shouldUseRegistryPullPreset() bool {
+	if p.useRegistryPullPreset {
+		return true
+	}
+	return p.info != nil &&
+		p.info.Org == "openshift" &&
+		p.info.Repo == "cluster-version-operator" &&
+		p.info.Branch == "release-4.23"
+}


The defaulting logic in shouldUseRegistryPullPreset hard-codes a specific org/repo/branch to flip job behavior. This makes registry-pull preset usage implicit and hard to reason about, and it also conflicts with the updated ephemeralcluster ProwJob fixtures (which expect the preset label for other repos/branches). Prefer making this strictly opt-in via explicit builder configuration (or a config/feature-flag), and avoid embedding repo/branch policy in the generator.

Copilot · 2026-03-09T23:28:50Z

pkg/controller/prpqr_reconciler/prpqr_reconciler.go

 		jobBaseGen := prowgen.NewProwJobBaseBuilderForTest(ciopConfig, fakeProwgenInfo, prowgen.NewCiOperatorPodSpecGenerator(), test)
+		if hasPRAuthor(prs, "petr-muller") {
+			jobBaseGen.UseRegistryPullPreset()
+		}


This conditional enables behavior based on a specific GitHub username. Shipping user-specific feature gates in controller logic is brittle and leads to inconsistent job specs depending on who authored a PR. Please replace this with a real feature flag/config switch (or remove it once validation is complete).

Copilot · 2026-03-09T23:28:51Z

cmd/multi-pr-prow-plugin/server.go

 		fakeProwgenInfo := &prowgen.ProwgenInfo{Metadata: testJobMetadata}
 		jobBaseGen := prowgen.NewProwJobBaseBuilderForTest(ciopConfig, fakeProwgenInfo, prowgen.NewCiOperatorPodSpecGenerator(), test)
+		if commenter == "petr-muller" {
+			jobBaseGen.UseRegistryPullPreset()
+		}
 		jobBaseGen.PodSpec.Add(prowgen.InjectTestFrom(&jr.JobMetadata))


Hard-coding a specific commenter username to alter generated ProwJobs will create surprising, user-dependent behavior and is difficult to maintain. Prefer a configuration/feature-flag based toggle (or remove after the experiment).

Copilot · 2026-03-09T23:28:51Z

cmd/multi-pr-prow-plugin/server.go

 		fakeProwgenInfo := &prowgen.ProwgenInfo{Metadata: testJobMetadata}
 		jobBaseGen := prowgen.NewProwJobBaseBuilderForTest(ciopConfig, fakeProwgenInfo, prowgen.NewCiOperatorPodSpecGenerator(), test)
+		if commenter == "petr-muller" {
+			jobBaseGen.UseRegistryPullPreset()
+		}
 		jobBaseGen.PodSpec.Add(prowgen.InjectTestFrom(&jr.JobMetadata))


The new registry-pull preset path (triggered by the commenter check) isn't covered by tests. Please add a TestGenerateProwJob case that passes a matching commenter and asserts the preset label is set and the inline pull-secret volume/mount is removed.

Copilot · 2026-03-09T23:28:51Z

...er/ephemeralcluster/testdata/zz_fixture_pj_TestCreateProwJob_Inject_missing_PR_metadata.yaml

      created-by-prow: "true"
      event-GUID: aa9ede40-8fbb-11f0-8717-9eed0c1315d0
      pj-rehearse.openshift.io/can-be-rehearsed: "true"
+      presets.ci.openshift.io/registry-pull: "true"
      prow.k8s.io/context: cluster-provisioning


This fixture now expects the registry-pull preset label and removal of the inline pull-secret volume/mount. However, the current generator only enables that behavior for explicit UseRegistryPullPreset() calls (or a specific openshift/cluster-version-operator release-4.23 default). For this job's org/repo/branch, the label/mount removal will not occur, so the fixture will diverge from actual output and tests will fail. Either enable the preset for this flow in code or revert this fixture change.

Copilot · 2026-03-09T23:28:51Z

...cluster/testdata/zz_fixture_pj_TestCreateProwJob_Hive_cluster_request_creates_a_ProwJob.yaml

      created-by-prow: "true"
      event-GUID: aa9ede40-8fbb-11f0-8717-9eed0c1315d0
      pj-rehearse.openshift.io/can-be-rehearsed: "true"
+      presets.ci.openshift.io/registry-pull: "true"
      prow.k8s.io/context: cluster-provisioning


This fixture now expects the registry-pull preset label and removal of the inline pull-secret volume/mount, but the generator doesn't enable the preset for openshift/ci-tools/main unless explicitly requested. This will make the fixture inconsistent with actual generated ProwJobs. Either update the generation code to set the preset label for this case or revert the fixture change.

Copilot · 2026-03-09T23:28:51Z

.../testdata/zz_fixture_pj_TestCreateProwJob_An_EphemeralCluster_request_creates_a_ProwJob.yaml

      created-by-prow: "true"
      event-GUID: aa9ede40-8fbb-11f0-8717-9eed0c1315d0
      pj-rehearse.openshift.io/can-be-rehearsed: "true"
+      presets.ci.openshift.io/registry-pull: "true"
      prow.k8s.io/context: cluster-provisioning


This fixture now expects the registry-pull preset label and removal of the inline pull-secret volume/mount, but the generator doesn't enable the preset for openshift/ci-tools/main unless explicitly requested. This will make the fixture inconsistent with actual generated ProwJobs. Either update the generation code to set the preset label for this case or revert the fixture change.

coderabbitai

🧹 Nitpick comments (2)

cmd/multi-pr-prow-plugin/server.go (1)
357-359: Hardcoded username for limited rollout validation is acceptable but should be documented.

The hardcoded check for "petr-muller" aligns with the PR's stated goal of narrow validation before broader rollout. Consider adding a brief inline comment explaining this is a temporary rollout gate, similar to the comment in shouldUseRegistryPullPreset().
💡 Suggested comment for clarity
 		jobBaseGen := prowgen.NewProwJobBaseBuilderForTest(ciopConfig, fakeProwgenInfo, prowgen.NewCiOperatorPodSpecGenerator(), test)
+		// Temporarily gate registry-pull preset to specific user for validation
 		if commenter == "petr-muller" {
 			jobBaseGen.UseRegistryPullPreset()
 		}
🤖 Prompt for AI Agents
Verify each finding against the current code and only fix it if needed.

In `@cmd/multi-pr-prow-plugin/server.go` around lines 357 - 359, Add a brief
inline comment above the hardcoded check "if commenter == \"petr-muller\""
explaining that this username-based branch is an intentional, temporary rollout
gate for limited validation before broader rollout; reference the same rationale
as shouldUseRegistryPullPreset() and mark it as temporary so future maintainers
know to remove/expand it later, leaving the condition and the call to
jobBaseGen.UseRegistryPullPreset() unchanged.
cmd/multi-pr-prow-plugin/server_test.go (1)
996-996: Test correctly updated to pass empty commenter, but consider adding coverage for the preset-enabled path.

The empty string ensures existing tests continue to verify non-preset behavior. For comprehensive coverage of the new functionality, consider adding a test case where commenter == "petr-muller" to verify the preset label is applied and inline pull-secret is removed.
🤖 Prompt for AI Agents
Verify each finding against the current code and only fix it if needed.

In `@cmd/multi-pr-prow-plugin/server_test.go` at line 996, Add a new test case
that exercises the preset-enabled path by calling s.generateProwJob(tc.jobRun,
"petr-muller") (instead of the current empty commenter) and assert that the
returned prowJob contains the expected preset label in prowJob.Labels and that
any inline pull-secret was removed from the job spec (e.g.,
prowJob.Spec.PodSpec.ImagePullSecrets or the inline secret field you use). Use
the existing generateProwJob and jobRun setup to create the input, then add
assertions for the preset label key/value and that no inline pull-secret remains
to validate the preset behavior.

🤖 Prompt for all review comments with AI agents

Verify each finding against the current code and only fix it if needed.

Nitpick comments:
In `@cmd/multi-pr-prow-plugin/server_test.go`:
- Line 996: Add a new test case that exercises the preset-enabled path by
calling s.generateProwJob(tc.jobRun, "petr-muller") (instead of the current
empty commenter) and assert that the returned prowJob contains the expected
preset label in prowJob.Labels and that any inline pull-secret was removed from
the job spec (e.g., prowJob.Spec.PodSpec.ImagePullSecrets or the inline secret
field you use). Use the existing generateProwJob and jobRun setup to create the
input, then add assertions for the preset label key/value and that no inline
pull-secret remains to validate the preset behavior.

In `@cmd/multi-pr-prow-plugin/server.go`:
- Around line 357-359: Add a brief inline comment above the hardcoded check "if
commenter == \"petr-muller\"" explaining that this username-based branch is an
intentional, temporary rollout gate for limited validation before broader
rollout; reference the same rationale as shouldUseRegistryPullPreset() and mark
it as temporary so future maintainers know to remove/expand it later, leaving
the condition and the call to jobBaseGen.UseRegistryPullPreset() unchanged.

ℹ️ Review info

⚙️ Run configuration

Configuration used: Repository: openshift/coderabbit/.coderabbit.yaml

Review profile: CHILL

Plan: Pro

Run ID: ed3e1ea6-edae-4cce-9b68-54c98f9a5389

📥 Commits

Reviewing files that changed from the base of the PR and between 6d44ca2 and c422ded.

📒 Files selected for processing (5)

cmd/multi-pr-prow-plugin/server.go
cmd/multi-pr-prow-plugin/server_test.go
pkg/controller/prpqr_reconciler/prpqr_reconciler.go
pkg/prowgen/jobbase.go
pkg/prowgen/podspec.go

🚧 Files skipped from review as they are similar to previous changes (1)

pkg/prowgen/podspec.go

openshift-ci · 2026-03-10T01:18:24Z

@petr-muller: The following tests failed, say /retest to rerun all failed tests or /retest-required to rerun all mandatory failed tests:

Test name	Commit	Details	Required	Rerun command
ci/prow/images	`c422ded`	link	true	`/test images`
ci/prow/breaking-changes	`c422ded`	link	false	`/test breaking-changes`
ci/prow/unit	`c422ded`	link	true	`/test unit`

Full PR test history. Your PR dashboard.

Details

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes-sigs/prow repository. I understand the commands that are listed here.

openshift-ci bot added the do-not-merge/work-in-progress Indicates that a PR should not merge because it is a work in progress. label Mar 6, 2026

openshift-merge-robot added the needs-rebase Indicates a PR cannot be merged because it has merge conflicts with HEAD. label Mar 6, 2026

petr-muller mentioned this pull request Mar 6, 2026

prow: add registry-pull preset to provide jobs with pull credentials openshift/release#75830

Merged

petr-muller mentioned this pull request Mar 6, 2026

jobs: regenerate with preset-ci-operator-image-pull openshift/release#75831

Closed

3 tasks

petr-muller force-pushed the preset-ci-operator-image-pull branch from 62ec57c to 5db89a5 Compare March 6, 2026 18:15

openshift-merge-robot removed the needs-rebase Indicates a PR cannot be merged because it has merge conflicts with HEAD. label Mar 6, 2026

coderabbitai bot reviewed Mar 6, 2026

View reviewed changes

petr-muller force-pushed the preset-ci-operator-image-pull branch from 5db89a5 to 17c9c43 Compare March 7, 2026 18:44

petr-muller marked this pull request as ready for review March 7, 2026 18:45

Copilot AI review requested due to automatic review settings March 7, 2026 18:45

openshift-ci bot removed the do-not-merge/work-in-progress Indicates that a PR should not merge because it is a work in progress. label Mar 7, 2026

openshift-ci bot requested review from droslean and jmguzik March 7, 2026 18:46

Copilot started reviewing on behalf of petr-muller March 7, 2026 18:46 View session

Copilot AI reviewed Mar 7, 2026

View reviewed changes

petr-muller mentioned this pull request Mar 7, 2026

DO-NOT-MERGE: Rehearse jobs using presets openshift/release#75856

Draft

petr-muller force-pushed the preset-ci-operator-image-pull branch from 17c9c43 to 8209018 Compare March 7, 2026 19:17

petr-muller force-pushed the preset-ci-operator-image-pull branch from 8209018 to 6d44ca2 Compare March 7, 2026 19:23

Copilot AI review requested due to automatic review settings March 7, 2026 19:23

Copilot started reviewing on behalf of petr-muller March 7, 2026 19:23 View session

Copilot AI reviewed Mar 7, 2026

View reviewed changes

Prucek approved these changes Mar 9, 2026

View reviewed changes

openshift-ci bot assigned Prucek Mar 9, 2026

openshift-ci bot added the lgtm Indicates that a PR is ready to be merged. label Mar 9, 2026

openshift-ci bot added the approved Indicates a PR has been approved by an approver from all required OWNERS files. label Mar 9, 2026

openshift-ci bot added do-not-merge/hold Indicates that a PR should not merge because someone has issued a /hold command. and removed lgtm Indicates that a PR is ready to be merged. labels Mar 9, 2026

Copilot AI review requested due to automatic review settings March 9, 2026 23:21

petr-muller force-pushed the preset-ci-operator-image-pull branch from 8a379ed to c422ded Compare March 9, 2026 23:21

Copilot started reviewing on behalf of petr-muller March 9, 2026 23:22 View session

Copilot AI reviewed Mar 9, 2026

View reviewed changes

coderabbitai bot reviewed Mar 9, 2026

View reviewed changes

Conversation

petr-muller commented Mar 6, 2026 • edited by coderabbitai bot Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

Summary

Design

Impact (this preset alone)

Companion PR

Summary by CodeRabbit

Uh oh!

openshift-ci-robot commented Mar 6, 2026

Uh oh!

openshift-ci bot commented Mar 6, 2026

Uh oh!

petr-muller commented Mar 6, 2026

Uh oh!

coderabbitai bot commented Mar 6, 2026 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

Walkthrough

Changes

Sequence Diagram(s)

Estimated code review effort

❌ Failed checks (1 warning)

Uh oh!

coderabbitai bot left a comment

Choose a reason for hiding this comment

Uh oh!

Copilot AI left a comment

Choose a reason for hiding this comment

Pull request overview

Reviewed changes

Uh oh!

Copilot AI Mar 7, 2026

Choose a reason for hiding this comment

Uh oh!

Copilot AI left a comment

Choose a reason for hiding this comment

Pull request overview

Uh oh!

Copilot AI Mar 7, 2026

Choose a reason for hiding this comment

Uh oh!

Copilot AI Mar 7, 2026

Choose a reason for hiding this comment

Uh oh!

Copilot AI Mar 7, 2026

Choose a reason for hiding this comment

Uh oh!

openshift-ci bot commented Mar 9, 2026

Uh oh!

petr-muller commented Mar 9, 2026

Uh oh!

openshift-ci bot commented Mar 9, 2026

Uh oh!

Copilot AI left a comment

Choose a reason for hiding this comment

Pull request overview

Uh oh!

Copilot AI Mar 9, 2026

Choose a reason for hiding this comment

Uh oh!

Copilot AI Mar 9, 2026

Choose a reason for hiding this comment

Uh oh!

Copilot AI Mar 9, 2026

Choose a reason for hiding this comment

Uh oh!

Copilot AI Mar 9, 2026

Choose a reason for hiding this comment

Uh oh!

Copilot AI Mar 9, 2026

Choose a reason for hiding this comment

Uh oh!

Copilot AI Mar 9, 2026

Choose a reason for hiding this comment

Uh oh!

Copilot AI Mar 9, 2026

Choose a reason for hiding this comment

Uh oh!

coderabbitai bot left a comment

Choose a reason for hiding this comment

petr-muller commented Mar 6, 2026 •

edited by coderabbitai bot

Loading

coderabbitai bot commented Mar 6, 2026 •

edited

Loading