fix ITs step

antoine-vinot-sonarsource · antoine-vinot-sonarsource · commit e626cb6b56c6 · 2025-11-27T15:04:26.000+01:00
diff --git a/.github/workflows/build.yml b/.github/workflows/build.yml
@@ -25,6 +25,31 @@ permissions:
   contents: write  # Required for repository access and tagging
 
 jobs:
+  validate:
+    name: Validate CI and ITS
+    runs-on: github-ubuntu-latest-s
+    steps:
+      - uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0
+        with:
+          fetch-depth: 0  # Fetch all history for git operations
+      - uses: jdx/mise-action@146a28175021df8ca24f8ee1828cc2a60f980bd5 # v3.5.1
+        with:
+          version: 2025.7.12
+      - name: Cache dependencies
+        uses: SonarSource/ci-github-actions/cache@v1
+        with:
+          path: |
+            node_modules
+          key: cache-${{ runner.os }}-${{ hashFiles('**/package-lock.json') }}
+      - name: Install dependencies
+        run: bash scripts/install.sh
+      - name: Validate generated ITS
+        run: |
+          npm run generate-its
+          git diff --exit-code
+      - name: Validate CI
+        run: npm run validate-ci
+
   get-build-number:
     name: Preload build number
     runs-on: github-ubuntu-latest-s
@@ -33,24 +58,24 @@ jobs:
       contents: read
     steps:
       - uses: SonarSource/ci-github-actions/get-build-number@v1
+
   build:
     needs:
+      - validate
       - get-build-number
-    runs-on: github-ubuntu-latest-s  # Using custom GitHub-hosted runner for public repo
+    runs-on: github-ubuntu-latest-s
     name: Build and Test
     steps:
       - uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0
         with:
           fetch-depth: 0  # Fetch all history for git operations
-
       - uses: jdx/mise-action@146a28175021df8ca24f8ee1828cc2a60f980bd5 # v3.5.1
         with:
           version: 2025.7.12
       - uses: SonarSource/ci-github-actions/config-npm@v1
         id: config
         with:
           artifactory-reader-role: private-reader
-      # Fetch vault secrets for build
       - name: Vault
         id: secrets
         uses: SonarSource/vault-action-wrapper@v3 # v3.1.0
@@ -73,14 +98,6 @@ jobs:
       # Install dependencies
       - name: Install dependencies
         run: bash scripts/install.sh
-
-      # Validate generated ITS are up-to-date
-      - name: Validate generated ITS
-        run: |
-          npm run generate-its
-          git diff --exit-code
-      - name: Validate CI
-        run: npm run validate-ci
       - name: Build
         run: npm run build
       - name: Run SonarQube Analysis
@@ -99,14 +116,14 @@ jobs:
 
   check_size:
     needs:
+      - validate
       - get-build-number
     runs-on: github-ubuntu-latest-s  # Using custom GitHub-hosted runner for public repo
     name: Check Extension Size
     env:
       MAX_FILE_SIZE_MB: 40
     steps:
       - uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0
-
       - uses: jdx/mise-action@146a28175021df8ca24f8ee1828cc2a60f980bd5 # v3.5.1
         with:
           version: 2025.7.12
