From f18badbd5ddea43b1a6572f76ea6ad428dc3fc1c Mon Sep 17 00:00:00 2001
From: Andrei Tataranovich <andrei_tataranovich@epam.com>
Date: Wed, 13 Nov 2024 10:37:52 +0300
Subject: [PATCH 1/4] chore: cleanup untagged images

---
 .github/workflows/cleanup-untagged-images.yml | 20 +++++++++++++++++++
 1 file changed, 20 insertions(+)
 create mode 100644 .github/workflows/cleanup-untagged-images.yml

diff --git a/.github/workflows/cleanup-untagged-images.yml b/.github/workflows/cleanup-untagged-images.yml
new file mode 100644
index 0000000..37dd0be
--- /dev/null
+++ b/.github/workflows/cleanup-untagged-images.yml
@@ -0,0 +1,20 @@
+name: Cleanup untagged images
+
+on:
+  schedule:
+    - cron: "0 0 * * *"
+
+jobs:
+  clean:
+    name: Delete untagged images
+    runs-on: ubuntu-latest
+    permissions:
+      packages: write
+    steps:
+      - uses: snok/container-retention-policy@4f22ef80902ad409ed55a99dc5133cc1250a0d03 # v3.0.0
+        with:
+          account: ${{ github.repository_owner }}
+          token: ${{ secrets.GITHUB_TOKEN }}
+          image-names: ${{ github.event.repository.name }}
+          tag-selection: "untagged"
+          cut-off: "1d"

From 7e28db06ac273097b2653f7de2ced4d28662feba Mon Sep 17 00:00:00 2001
From: Andrei Tataranovich <andrei_tataranovich@epam.com>
Date: Wed, 13 Nov 2024 15:42:31 +0300
Subject: [PATCH 2/4] chore: fix trivy random failures

---
 trivy.yaml | 13 +++++++++++++
 1 file changed, 13 insertions(+)
 create mode 100644 trivy.yaml

diff --git a/trivy.yaml b/trivy.yaml
new file mode 100644
index 0000000..f595cea
--- /dev/null
+++ b/trivy.yaml
@@ -0,0 +1,13 @@
+# Trivy configuration file
+# https://aquasecurity.github.io/trivy/latest/docs/references/configuration/config-file/
+# Can be deleted after public ecr mirror will be added by default
+db:
+  no-progress: true
+  repository:
+    - ghcr.io/aquasecurity/trivy-db:2
+    - public.ecr.aws/aquasecurity/trivy-db:2
+  java-repository:
+    - ghcr.io/aquasecurity/trivy-java-db:1
+    - public.ecr.aws/aquasecurity/trivy-java-db:1
+misconfiguration:
+  checks-bundle-repository: public.ecr.aws/aquasecurity/trivy-checks

From ef9eb7bb82d8bd5c1add5c8611e7631fb1399fb3 Mon Sep 17 00:00:00 2001
From: Andrei Tataranovich <andrei_tataranovich@epam.com>
Date: Wed, 13 Nov 2024 16:07:33 +0300
Subject: [PATCH 3/4] chore: bump version

---
 .github/workflows/pr.yml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/.github/workflows/pr.yml b/.github/workflows/pr.yml
index 2692edb..ba9c25e 100644
--- a/.github/workflows/pr.yml
+++ b/.github/workflows/pr.yml
@@ -6,5 +6,5 @@ on:
 
 jobs:
   run_tests:
-    uses: epam/ai-dial-ci/.github/workflows/python_docker_pr.yml@1.7.0
+    uses: epam/ai-dial-ci/.github/workflows/python_docker_pr.yml@1.9.4
     secrets: inherit

From 595a745ae0d2305b2feed477eb4efa60fea3ec0a Mon Sep 17 00:00:00 2001
From: Andrei Tataranovich <andrei_tataranovich@epam.com>
Date: Tue, 24 Dec 2024 09:56:54 +0300
Subject: [PATCH 4/4] chore: bump CI versions

---
 .github/workflows/deploy_dev.yml     | 2 +-
 .github/workflows/pr-title-check.yml | 2 +-
 .github/workflows/pr.yml             | 2 +-
 .github/workflows/release.yml        | 2 +-
 4 files changed, 4 insertions(+), 4 deletions(-)

diff --git a/.github/workflows/deploy_dev.yml b/.github/workflows/deploy_dev.yml
index d3fa269..b8fd57e 100644
--- a/.github/workflows/deploy_dev.yml
+++ b/.github/workflows/deploy_dev.yml
@@ -6,7 +6,7 @@ on:
 jobs:
   gitlab-dev-deploy:
     if: ${{ github.event.registry_package.package_version.container_metadata.tag.name == 'development' }}
-    uses: epam/ai-dial-ci/.github/workflows/deploy-development.yml@1.7.0
+    uses: epam/ai-dial-ci/.github/workflows/deploy-development.yml@1.10.2
     with:
       gitlab-project-id: "1829"
       gitlab-project-ref: "master"
diff --git a/.github/workflows/pr-title-check.yml b/.github/workflows/pr-title-check.yml
index 495a191..b9e3daf 100644
--- a/.github/workflows/pr-title-check.yml
+++ b/.github/workflows/pr-title-check.yml
@@ -9,6 +9,6 @@ on:
 
 jobs:
   pr-title-check:
-    uses: epam/ai-dial-ci/.github/workflows/pr-title-check.yml@1.7.0
+    uses: epam/ai-dial-ci/.github/workflows/pr-title-check.yml@1.10.2
     secrets:
       ACTIONS_BOT_TOKEN: ${{ secrets.ACTIONS_BOT_TOKEN }}
diff --git a/.github/workflows/pr.yml b/.github/workflows/pr.yml
index ba9c25e..468fe00 100644
--- a/.github/workflows/pr.yml
+++ b/.github/workflows/pr.yml
@@ -6,5 +6,5 @@ on:
 
 jobs:
   run_tests:
-    uses: epam/ai-dial-ci/.github/workflows/python_docker_pr.yml@1.9.4
+    uses: epam/ai-dial-ci/.github/workflows/python_docker_pr.yml@1.10.2
     secrets: inherit
diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml
index 96625d2..ca3b29b 100644
--- a/.github/workflows/release.yml
+++ b/.github/workflows/release.yml
@@ -6,5 +6,5 @@ on:
 
 jobs:
   release:
-    uses: epam/ai-dial-ci/.github/workflows/python_docker_release.yml@1.7.0
+    uses: epam/ai-dial-ci/.github/workflows/python_docker_release.yml@1.10.2
     secrets: inherit