diff --git a/.config/guardian/.gdnbaselines b/.config/guardian/.gdnbaselines new file mode 100644 index 00000000000..b6b74d33542 --- /dev/null +++ b/.config/guardian/.gdnbaselines @@ -0,0 +1,106 @@ +{ + "hydrated": false, + "properties": { + "helpUri": "https://eng.ms/docs/microsoft-security/security/azure-security/cloudai-security-fundamentals-engineering/security-integration/guardian-wiki/microsoft-guardian/general/baselines" + }, + "version": "1.0.0", + "baselines": { + "default": { + "name": "default", + "createdDate": "2025-10-09 21:18:42Z", + "lastUpdatedDate": "2025-10-09 21:18:42Z" + } + }, + "results": { + "9d8334bec997ff899ba849d8b31406f7c95af0ffb1d237972bd5134b8c6a9b88": { + "signature": "9d8334bec997ff899ba849d8b31406f7c95af0ffb1d237972bd5134b8c6a9b88", + "alternativeSignatures": [ + "b6a603191b00edf78ad2c6116a7a7822864031cc001884be25b3c1543dbe20a7" + ], + "memberOf": [ + "default" + ], + "createdDate": "2025-10-09 21:18:42Z" + }, + "ba7df56f5519347813a7917091709adf2d27b3493d05af0fb8b7037eda3020bb": { + "signature": "ba7df56f5519347813a7917091709adf2d27b3493d05af0fb8b7037eda3020bb", + "alternativeSignatures": [ + "5269e81e8a286ccd1568a00c455c489efa62e6887bfb55ea0dddaceb7183c882" + ], + "memberOf": [ + "default" + ], + "createdDate": "2025-10-09 21:18:42Z" + }, + "bc04851b7440a10a0c2a03f2793ab06b6562fe0529e0d353765503f1bcaf8c46": { + "signature": "bc04851b7440a10a0c2a03f2793ab06b6562fe0529e0d353765503f1bcaf8c46", + "alternativeSignatures": [ + "274b9a26e35f9604cd1c84941eb97f2edaecde6607be139e9d9d687f7d6875f4" + ], + "memberOf": [ + "default" + ], + "createdDate": "2025-10-09 21:18:42Z" + }, + "9fb27502e61c5647554076d6603a1092943fb625efb6c53faa1042e0d7d217ce": { + "signature": "9fb27502e61c5647554076d6603a1092943fb625efb6c53faa1042e0d7d217ce", + "alternativeSignatures": [ + "3355e030588f68be29994a44e2b11079e90945e26c6397345d11424ce36cc5a1" + ], + "memberOf": [ + "default" + ], + "createdDate": "2025-10-09 21:18:42Z" + }, + "60f28802b8ac837691755554b460b422afaeb8dea2129097ab3b7e6c43076ea1": { + "signature": "60f28802b8ac837691755554b460b422afaeb8dea2129097ab3b7e6c43076ea1", + "alternativeSignatures": [ + "7a3aa28c8f6e629099ba288e1a78ddb3191def880ae018f7146b66689daca838" + ], + "memberOf": [ + "default" + ], + "createdDate": "2025-10-09 21:18:42Z" + }, + "3bc55e953e7199f08b4c174f6fb0f026db93865d22fc5ef535e2ba1172c8db03": { + "signature": "3bc55e953e7199f08b4c174f6fb0f026db93865d22fc5ef535e2ba1172c8db03", + "alternativeSignatures": [ + "fb3809bbf91d374d8872aa371ff0d8858232822571dae6f9e6cba6276892d953" + ], + "memberOf": [ + "default" + ], + "createdDate": "2025-10-09 21:18:42Z" + }, + "bd69975ed44d92efc4a265e13462b1471f292ad9e8566b0200b2df7786808469": { + "signature": "bd69975ed44d92efc4a265e13462b1471f292ad9e8566b0200b2df7786808469", + "alternativeSignatures": [ + "609bf3d92ef1f73cbe4d3fa001926c0e274b04f21bf6d103a39a64849437e7e3" + ], + "memberOf": [ + "default" + ], + "createdDate": "2025-10-09 21:18:42Z" + }, + "0b6a4ced009a4e3efdf4ad8f00c0b31ec0791249087560c5c6481ab2824a35a8": { + "signature": "0b6a4ced009a4e3efdf4ad8f00c0b31ec0791249087560c5c6481ab2824a35a8", + "alternativeSignatures": [ + "c19c086ed81a8e7d7877bb2fb5a9d7df126ad553cbdd32086694b927042adc0b" + ], + "memberOf": [ + "default" + ], + "createdDate": "2025-10-09 21:18:42Z" + }, + "c689fe4e10fee4bdd5a3d759c027be8b89d28303078f76bb5aeb20dc192215c9": { + "signature": "c689fe4e10fee4bdd5a3d759c027be8b89d28303078f76bb5aeb20dc192215c9", + "alternativeSignatures": [ + "4faf3b308c9131f0e11686d21fd36e1ef6779c394d37cfc43cd360b4bfb086f5" + ], + "memberOf": [ + "default" + ], + "createdDate": "2025-10-09 21:18:42Z" + } + } +} \ No newline at end of file diff --git a/.config/guardian/gdnbaselines b/.config/guardian/gdnbaselines deleted file mode 100644 index b0533e8bab7..00000000000 --- a/.config/guardian/gdnbaselines +++ /dev/null @@ -1,26 +0,0 @@ -{ - "hydrated": false, - "properties": { - "helpUri": "https://eng.ms/docs/microsoft-security/security/azure-security/cloudai-security-fundamentals-engineering/security-integration/guardian-wiki/microsoft-guardian/general/baselines" - }, - "version": "1.0.0", - "baselines": { - "default": { - "name": "default", - "createdDate": "2025-08-19 11:30:04Z", - "lastUpdatedDate": "2025-08-19 11:30:04Z" - } - }, - "results": { - "289457ef952517284338044be0d68120ad96554e2cd793b14a427b2208be2990": { - "signature": "289457ef952517284338044be0d68120ad96554e2cd793b14a427b2208be2990", - "alternativeSignatures": [ - "8b86228cd1b156622e76e1845b23b901cafd908a4dc0a7b7bdd5cdd714b726ab" - ], - "memberOf": [ - "default" - ], - "createdDate": "2025-08-19 11:30:04Z" - } - } -} diff --git a/EFCore.sln b/EFCore.sln index fecc4fafa42..91075f55dfd 100644 --- a/EFCore.sln +++ b/EFCore.sln @@ -1,11 +1,12 @@  Microsoft Visual Studio Solution File, Format Version 12.00 -# Visual Studio Version 17 -VisualStudioVersion = 17.0.31521.260 +# Visual Studio Version 18 +VisualStudioVersion = 18.0.11026.189 MinimumVisualStudioVersion = 17.0.31521.260 Project("{2150E333-8FDC-42A3-9474-1A3956D46DE8}") = "Solution Items", "Solution Items", "{B9E4CC99-199C-4E3B-9EC5-D1FDFCD6C27B}" ProjectSection(SolutionItems) = preProject .editorconfig = .editorconfig + azure-pipelines-internal-tests.yml = azure-pipelines-internal-tests.yml azure-pipelines-public.yml = azure-pipelines-public.yml azure-pipelines.yml = azure-pipelines.yml .github\copilot-instructions.md = .github\copilot-instructions.md diff --git a/azure-pipelines-internal-tests.yml b/azure-pipelines-internal-tests.yml index 5f14dbd13bf..2987ae059ef 100644 --- a/azure-pipelines-internal-tests.yml +++ b/azure-pipelines-internal-tests.yml @@ -1,8 +1,6 @@ variables: - name: _BuildConfig value: Release - - name: _TeamName - value: AspNetCore - name: DOTNET_SKIP_FIRST_TIME_EXPERIENCE value: true - name: _PublishUsingPipelines @@ -11,12 +9,6 @@ variables: value: https://localhost:8081 - name: _CosmosToken value: C2y6yDjf5/R+ob0N8A7Cgv30VRDJIWEHLM+4QDU5DE2nQ9nDuVTqobD4b8mGGyPMbIZnqyMsEcaGQy67XIw/Jw== - - ${{ if or(startswith(variables['Build.SourceBranch'], 'refs/heads/release/'), startswith(variables['Build.SourceBranch'], 'refs/heads/internal/release/'), eq(variables['Build.Reason'], 'Manual')) }}: - - name: PostBuildSign - value: false - - ${{ else }}: - - name: PostBuildSign - value: true - group: DotNet-HelixApi-Access - name: _InternalRuntimeDownloadArgs value: /p:DotNetRuntimeSourceFeed=https://ci.dot.net/internal /p:DotNetRuntimeSourceFeedKey=$(dotnetbuilds-internal-container-read-token-base64) @@ -47,7 +39,6 @@ extends: parameters: featureFlags: autoBaseline: false - usePrefastVersion3: true autoEnableRoslynWithNewRuleset: false sdl: createAdoIssuesForJustificationsForDisablement: false @@ -55,19 +46,46 @@ extends: name: $(DncEngInternalBuildPool) image: 1es-windows-2022 os: windows + enabled: false baseline: baselineFile: $(Build.SourcesDirectory)\.config\guardian\.gdnbaselines binskim: - scanOutputDirectoryOnly: true - preReleaseVersion: '4.3.1' - env: - GDN_EXTRACT_TOOLS: "binskim" - GDN_EXTRACT_TARGETS: true - GDN_EXTRACT_FILTER: "f|**\\*.zip;f|**\\*.nupkg;f|**\\*.vsix;f|**\\*.cspkg;f|**\\*.sfpkg;f|**\\*.package" + enabled: false + justificationForDisabling: 'NonProduction' policheck: - enabled: true + enabled: false + justificationForDisabling: 'NonProduction' tsa: - enabled: true + enabled: false + justificationForDisabling: 'NonProduction' + antimalwareScan: + enabled: false + justificationForDisabling: 'NonProduction' + prefast: + enabled: false + justificationForDisabling: 'NonProduction' + codeQL: + compiled: + enabled: false + justificationForDisabling: 'NonProduction' + psscriptanalyzer: + enabled: false + justificationForDisabling: 'NonProduction' + credscan: + enabled: false + justificationForDisabling: 'NonProduction' + spmi: + enabled: false + justificationForDisabling: 'NonProduction' + componentgovernance: + enabled: false + justificationForDisabling: 'NonProduction' + eslint: + enabled: false + justificationForDisabling: 'NonProduction' + armory: + enabled: false + justificationForDisabling: 'NonProduction' customBuildTags: - ES365AIMigrationTooling stages: @@ -78,10 +96,10 @@ extends: parameters: enableMicrobuild: true enablePublishBuildArtifacts: true - enablePublishBuildAssets: true + enablePublishBuildAssets: false enablePublishTestResults: true - enablePublishUsingPipelines: ${{ variables._PublishUsingPipelines }} publishAssetsImmediately: true + isAssetlessBuild: true enableTelemetry: true helixRepo: dotnet/efcore jobs: @@ -95,15 +113,6 @@ extends: - _InternalBuildArgs: '' # Rely on task Arcade injects, not auto-injected build step. - skipComponentGovernanceDetection: true - - ${{ if notin(variables['Build.Reason'], 'PullRequest') }}: - - _SignType: real - - _InternalBuildArgs: /p:DotNetSignType=$(_SignType) /p:TeamName=$(_TeamName) /p:DotNetPublishUsingPipelines=$(_PublishUsingPipelines) /p:OfficialBuildId=$(BUILD.BUILDNUMBER) - # Ignore test and infrastructure code. - - Codeql.SourceRoot: src - # CodeQL3000 needs this plumbed along as a variable to enable TSA. - - Codeql.TSAEnabled: true - # Default expects tsaoptions.json under SourceRoot. - - Codeql.TSAOptionsPath: '$(Build.SourcesDirectory)/.config/tsaoptions.json' steps: - task: NuGetCommand@2 displayName: 'Clear NuGet caches' @@ -125,25 +134,6 @@ extends: env: Test__Cosmos__DefaultConnection: $(_CosmosConnectionUrl) displayName: Build - - task: CopyFiles@2 - displayName: 'Copy binaries for publishing' - inputs: - Contents: | - artifacts/bin/**/?(*.dll|*.exe|*.pdb) - !artifacts/bin/*Tests/** - TargetFolder: $(Agent.TempDirectory)/BinArtifacts - templateContext: - outputs: - - output: pipelineArtifact - displayName: Publish binaries - condition: always() - path: $(Agent.TempDirectory)/BinArtifacts/ - artifact: BinArtifacts - - output: pipelineArtifact - displayName: Upload TestResults - condition: always() - path: artifacts/TestResults/$(_BuildConfig)/ - artifact: $(Agent.Os)_$(Agent.JobName) TestResults - job: macOS pool: name: Azure Pipelines @@ -161,13 +151,6 @@ extends: # Work-around for https://github.com/dotnet/runtime/issues/70758 COMPlus_EnableWriteXorExecute: 0 displayName: Build - templateContext: - outputs: - - output: pipelineArtifact - displayName: Upload TestResults - condition: always() - path: artifacts/TestResults/$(_BuildConfig)/ - artifact: $(Agent.Os)_$(Agent.JobName) TestResults - job: Linux timeoutInMinutes: 180 pool: @@ -213,12 +196,6 @@ extends: sdl: binskim: prereleaseVersion: ' ' - outputs: - - output: pipelineArtifact - displayName: Upload TestResults - condition: always() - path: artifacts/TestResults/$(_BuildConfig)/ - artifact: $(Agent.Os)_$(Agent.JobName) TestResults - job: Helix timeoutInMinutes: 180 pool: @@ -266,13 +243,3 @@ extends: # Work-around for https://github.com/dotnet/runtime/issues/70758 COMPlus_EnableWriteXorExecute: 0 DotNetBuildsInternalReadSasToken: $(dotnetbuilds-internal-container-read-token) - - ${{ if notin(variables['Build.Reason'], 'PullRequest') }}: - - template: /eng/common/templates-official/post-build/post-build.yml@self - parameters: - publishingInfraVersion: 3 - enableSigningValidation: false - enableNugetValidation: false - enableSourceLinkValidation: false - publishAssetsImmediately: true - SDLValidationParameters: - enable: false diff --git a/azure-pipelines-public.yml b/azure-pipelines-public.yml index 6a3bf435d1d..70d4bdfdb3f 100644 --- a/azure-pipelines-public.yml +++ b/azure-pipelines-public.yml @@ -45,6 +45,7 @@ stages: enablePublishBuildAssets: true enablePublishUsingPipelines: ${{ variables._PublishUsingPipelines }} publishAssetsImmediately: true + isAssetlessBuild: true enableSourceIndex: false enableTelemetry: true helixRepo: dotnet/efcore diff --git a/azure-pipelines.yml b/azure-pipelines.yml index 5f14dbd13bf..510a2ff8ce6 100644 --- a/azure-pipelines.yml +++ b/azure-pipelines.yml @@ -6,11 +6,7 @@ variables: - name: DOTNET_SKIP_FIRST_TIME_EXPERIENCE value: true - name: _PublishUsingPipelines - value: true - - name: _CosmosConnectionUrl - value: https://localhost:8081 - - name: _CosmosToken - value: C2y6yDjf5/R+ob0N8A7Cgv30VRDJIWEHLM+4QDU5DE2nQ9nDuVTqobD4b8mGGyPMbIZnqyMsEcaGQy67XIw/Jw== + value: false - ${{ if or(startswith(variables['Build.SourceBranch'], 'refs/heads/release/'), startswith(variables['Build.SourceBranch'], 'refs/heads/internal/release/'), eq(variables['Build.Reason'], 'Manual')) }}: - name: PostBuildSign value: false @@ -59,6 +55,7 @@ extends: baselineFile: $(Build.SourcesDirectory)\.config\guardian\.gdnbaselines binskim: scanOutputDirectoryOnly: true + analyzeTargetGlob: '+:f|artifacts/bin/**/Microsoft.EntityFrameworkCore*.dll;+:f|artifacts/bin/**/Microsoft.Data.Sqlite*.dll;+:f|artifacts/bin/**/ef.exe;+:f|artifacts/bin/**/dotnet-ef.exe;-:f|artifacts/bin/**/shims/**/*.exe;' preReleaseVersion: '4.3.1' env: GDN_EXTRACT_TOOLS: "binskim" @@ -78,10 +75,10 @@ extends: parameters: enableMicrobuild: true enablePublishBuildArtifacts: true - enablePublishBuildAssets: true - enablePublishTestResults: true - enablePublishUsingPipelines: ${{ variables._PublishUsingPipelines }} + enablePublishBuildAssets: false + enablePublishTestResults: false publishAssetsImmediately: true + isAssetlessBuild: true enableTelemetry: true helixRepo: dotnet/efcore jobs: @@ -90,13 +87,14 @@ extends: name: $(DncEngInternalBuildPool) demands: ImageOverride -equals 1es-windows-2022 os: windows - timeoutInMinutes: 180 + timeoutInMinutes: 60 variables: - _InternalBuildArgs: '' # Rely on task Arcade injects, not auto-injected build step. - skipComponentGovernanceDetection: true - ${{ if notin(variables['Build.Reason'], 'PullRequest') }}: - _SignType: real + - _Sign: true - _InternalBuildArgs: /p:DotNetSignType=$(_SignType) /p:TeamName=$(_TeamName) /p:DotNetPublishUsingPipelines=$(_PublishUsingPipelines) /p:OfficialBuildId=$(BUILD.BUILDNUMBER) # Ignore test and infrastructure code. - Codeql.SourceRoot: src @@ -117,162 +115,7 @@ extends: - script: "echo ##vso[build.addbuildtag]release-candidate" condition: and(notin(variables['Build.Reason'], 'PullRequest'), eq(variables['IsFinalBuild'], 'true')) displayName: 'Set CI tags' - - powershell: SqlLocalDB start - displayName: Start LocalDB - - template: /eng/common/templates-official/steps/enable-internal-sources.yml - - template: /eng/common/templates-official/steps/enable-internal-runtimes.yml - - script: eng\common\cibuild.cmd -configuration $(_BuildConfig) -prepareMachine $(_InternalBuildArgs) $(_InternalRuntimeDownloadArgs) - env: - Test__Cosmos__DefaultConnection: $(_CosmosConnectionUrl) - displayName: Build - - task: CopyFiles@2 - displayName: 'Copy binaries for publishing' - inputs: - Contents: | - artifacts/bin/**/?(*.dll|*.exe|*.pdb) - !artifacts/bin/*Tests/** - TargetFolder: $(Agent.TempDirectory)/BinArtifacts - templateContext: - outputs: - - output: pipelineArtifact - displayName: Publish binaries - condition: always() - path: $(Agent.TempDirectory)/BinArtifacts/ - artifact: BinArtifacts - - output: pipelineArtifact - displayName: Upload TestResults - condition: always() - path: artifacts/TestResults/$(_BuildConfig)/ - artifact: $(Agent.Os)_$(Agent.JobName) TestResults - - job: macOS - pool: - name: Azure Pipelines - image: macOS-13 - os: macOS - variables: - # Rely on task Arcade injects, not auto-injected build step. - - skipComponentGovernanceDetection: true - steps: - - template: /eng/common/templates-official/steps/enable-internal-sources.yml - - template: /eng/common/templates-official/steps/enable-internal-runtimes.yml - - script: eng/common/build.sh --restore --build --test --pack --ci --configuration $(_BuildConfig) --prepareMachine $(_InternalRuntimeDownloadArgs) - env: - Test__Cosmos__DefaultConnection: $(_CosmosConnectionUrl) - # Work-around for https://github.com/dotnet/runtime/issues/70758 - COMPlus_EnableWriteXorExecute: 0 - displayName: Build - templateContext: - outputs: - - output: pipelineArtifact - displayName: Upload TestResults - condition: always() - path: artifacts/TestResults/$(_BuildConfig)/ - artifact: $(Agent.Os)_$(Agent.JobName) TestResults - - job: Linux - timeoutInMinutes: 180 - pool: - name: $(DncEngInternalBuildPool) - demands: ImageOverride -equals 1es-ubuntu-2204 - os: linux - variables: - - _runCounter: $[counter(variables['Build.Reason'], 0)] - # Rely on task Arcade injects, not auto-injected build step. - - skipComponentGovernanceDetection: true - - ${{ if notin(variables['Build.Reason'], 'PullRequest', 'Schedule') }}: - - _CosmosConnectionUrl: 'true' - steps: - - bash: | - echo "##vso[task.setvariable variable=_CosmosConnectionUrl]https://ef-nightly-test.documents.azure.com:443/" - displayName: Prepare to run Cosmos tests on ef-nightly-test - condition: and(eq(variables['_CosmosConnectionUrl'], 'true'), or(endsWith(variables['_runCounter'], '0'), endsWith(variables['_runCounter'], '2'), endsWith(variables['_runCounter'], '4'), endsWith(variables['_runCounter'], '6'), endsWith(variables['_runCounter'], '8'))) - - bash: | - echo "##vso[task.setvariable variable=_CosmosConnectionUrl]https://ef-pr-test.documents.azure.com:443/" - displayName: Prepare to run Cosmos tests on ef-pr-test - condition: and(eq(variables['_CosmosConnectionUrl'], 'true'), or(endsWith(variables['_runCounter'], '1'), endsWith(variables['_runCounter'], '3'), endsWith(variables['_runCounter'], '5'), endsWith(variables['_runCounter'], '7'), endsWith(variables['_runCounter'], '9'))) - template: /eng/common/templates-official/steps/enable-internal-sources.yml - template: /eng/common/templates-official/steps/enable-internal-runtimes.yml - - script: eng/common/build.sh --restore --build --test --pack --ci --configuration $(_BuildConfig) --prepareMachine $(_InternalRuntimeDownloadArgs) + - script: eng\common\build.cmd -restore -build -sign -pack -publish -ci -configuration $(_BuildConfig) -prepareMachine $(_InternalRuntimeDownloadArgs) displayName: Build - - task: AzureCLI@2 - displayName: Run Cosmos tests - condition: notin(variables['Build.Reason'], 'PullRequest', 'Schedule') - inputs: - azureSubscription: EFCosmosTesting - addSpnToEnvironment: true - scriptType: bash - scriptLocation: 'inlineScript' - inlineScript: | - ./test.sh --ci --configuration $(_BuildConfig) --projects $(Build.SourcesDirectory)/test/EFCore.Cosmos.FunctionalTests/EFCore.Cosmos.FunctionalTests.csproj - env: - Test__Cosmos__DefaultConnection: $(_CosmosConnectionUrl) - Test__Cosmos__UseTokenCredential: true - Test__Cosmos__SubscriptionId: d709b837-4a74-4aec-addc-b6e4b9b23e7e - Test__Cosmos__ResourceGroup: efcosmosci - name: Build - templateContext: - sdl: - binskim: - prereleaseVersion: ' ' - outputs: - - output: pipelineArtifact - displayName: Upload TestResults - condition: always() - path: artifacts/TestResults/$(_BuildConfig)/ - artifact: $(Agent.Os)_$(Agent.JobName) TestResults - - job: Helix - timeoutInMinutes: 180 - pool: - name: $(DncEngInternalBuildPool) - demands: ImageOverride -equals 1es-windows-2022 - os: windows - variables: - # Rely on task Arcade injects, not auto-injected build step. - - skipComponentGovernanceDetection: true - - name: _HelixBuildConfig - value: $(_BuildConfig) - - name: HelixTargetQueues - value: Windows.10.Amd64;OSX.13.Amd64;OSX.13.ARM64;Ubuntu.2204.Amd64@mcr.microsoft.com/dotnet-buildtools/prereqs:ubuntu-22.04-helix-sqlserver-amd64 - - name: _HelixAccessToken - # Needed for internal queues - value: $(HelixApiAccessToken) - steps: - - task: NuGetCommand@2 - displayName: 'Clear NuGet caches' - condition: succeeded() - inputs: - command: custom - arguments: 'locals all -clear' - - template: /eng/common/templates-official/steps/enable-internal-sources.yml - - template: /eng/common/templates-official/steps/enable-internal-runtimes.yml - - ${{ if ne(variables['System.TeamProject'], 'public') }}: - - template: /eng/common/core-templates/steps/get-delegation-sas.yml - parameters: - federatedServiceConnection: 'dotnetbuilds-internal-read' - outputVariableName: 'dotnetbuilds-internal-container-read-token' - expiryInHours: 1 - base64Encode: false - storageAccount: dotnetbuilds - container: internal - permissions: rl - - script: restore.cmd -ci /p:configuration=$(_BuildConfig) $(_InternalRuntimeDownloadArgs) - displayName: Restore packages - - script: .dotnet\dotnet build eng\helix.proj /restore /t:Test /p:configuration=$(_BuildConfig) /bl:$(Build.SourcesDirectory)/artifacts/log/$(_BuildConfig)/SendToHelix.binlog $(_InternalRuntimeDownloadArgs) - displayName: Send job to helix - env: - HelixAccessToken: $(_HelixAccessToken) - # We need to set this env var to publish helix results to Azure Dev Ops - SYSTEM_ACCESSTOKEN: $(System.AccessToken) - MSSQL_SA_PASSWORD: "PLACEHOLDERPass$$w0rd" - # Work-around for https://github.com/dotnet/runtime/issues/70758 - COMPlus_EnableWriteXorExecute: 0 - DotNetBuildsInternalReadSasToken: $(dotnetbuilds-internal-container-read-token) - - ${{ if notin(variables['Build.Reason'], 'PullRequest') }}: - - template: /eng/common/templates-official/post-build/post-build.yml@self - parameters: - publishingInfraVersion: 3 - enableSigningValidation: false - enableNugetValidation: false - enableSourceLinkValidation: false - publishAssetsImmediately: true - SDLValidationParameters: - enable: false