--- name: worker-image-build description: | Build Firefox CI worker images by triggering GitHub Actions workflows in mozilla-platform-ops/worker-images. Supports FXCI Azure workflows for Windows image builds (trusted and untrusted). Use when: - User wants to build a worker image - User mentions "FXCI Azure", "worker image build", or specific pool names like "win11-64-24h2-alpha" - User wants to trigger image builds for Windows 10, Windows 11, or Windows Server 2022 - User asks to check status of a worker image build Triggers: "build image", "worker image", "FXCI Azure", "trigger build", "image build status" --- # Worker Image Build Build Firefox CI worker images by triggering GitHub Actions workflows. ## Supported Workflows | Workflow | Name | Purpose | |----------|------|---------| | `sig-nontrusted.yml` | FXCI - Azure | Build untrusted Windows images | | `sig-trusted.yml` | FXCI - Azure - Trusted | Build trusted Windows images | ## Available Configs ### Untrusted (FXCI - Azure) ``` win10-64-2009-alpha win10-64-2009 win11-64-2009-alpha win11-64-2009 win11-64-24h2-alpha win11-64-24h2 win11-64-24h2-alpha-v6 win11-a64-24h2-tester-alpha win11-a64-24h2-tester win11-a64-24h2-builder-alpha win11-a64-24h2-builder win2022-64-2009-alpha win2022-64-2009 win2022-64-2009-alpha-v6 ``` ### Trusted (FXCI - Azure - Trusted) ``` trusted-win11-a64-24h2-builder trusted-win2022-64-2009 ``` ## Trigger a Build ```bash # Untrusted image gh workflow run "FXCI - Azure" \ --repo mozilla-platform-ops/worker-images \ -f config= # Trusted image gh workflow run "FXCI - Azure - Trusted" \ --repo mozilla-platform-ops/worker-images \ -f config= ``` Example: ```bash gh workflow run "FXCI - Azure" \ --repo mozilla-platform-ops/worker-images \ -f config=win11-64-24h2-alpha ``` ## Check Build Status After triggering, get the run URL: ```bash # Get latest run for untrusted gh run list --repo mozilla-platform-ops/worker-images \ --workflow "FXCI - Azure" --limit 1 \ --json databaseId,url,status,createdAt # Get latest run for trusted gh run list --repo mozilla-platform-ops/worker-images \ --workflow "FXCI - Azure - Trusted" --limit 1 \ --json databaseId,url,status,createdAt ``` Watch a specific run: ```bash gh run watch --repo mozilla-platform-ops/worker-images ``` View run logs: ```bash gh run view --repo mozilla-platform-ops/worker-images --log ``` ## Build Process 1. Access check against `.github/relsre.json` 2. Azure login with FXCI credentials 3. Packer build (30-60 min) 4. SBOM generation 5. Release notes PR created ## Naming Conventions - `-alpha` suffix: Test/staging images - No suffix: Production images - `trusted-` prefix: Trusted pool images - `-a64-`: ARM64 architecture - `-64-`: x64 architecture - `tester`/`builder`: Pool role ## More Examples See [references/examples.md](references/examples.md) for additional command examples. ## Repository https://github.com/mozilla-platform-ops/worker-images