From 2e78c4c16fc40f161dbd983ed3b4fb1e9f1212e9 Mon Sep 17 00:00:00 2001
From: "kevin.spurrier" <kevin.spurrier@rtx.com>
Date: Thu, 6 Nov 2025 15:40:58 -0600
Subject: [PATCH 1/4] CI Build Stage: change to self hosted

---
 .github/workflows/ngwpc-cicd.yml | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/.github/workflows/ngwpc-cicd.yml b/.github/workflows/ngwpc-cicd.yml
index b879c5228d..bac524671f 100644
--- a/.github/workflows/ngwpc-cicd.yml
+++ b/.github/workflows/ngwpc-cicd.yml
@@ -1,6 +1,7 @@
 name: CI/CD Pipeline
 
 on:
+  workflow_dispatch:
   pull_request:
     branches: [main, nwm-main, development, release-candidate]
   push:
@@ -55,7 +56,7 @@ jobs:
   build:
     name: build
     if: github.event_name == 'pull_request' || github.event_name == 'push'
-    runs-on: ubuntu-latest
+    runs-on: self-hosted
     needs: setup
     steps:
       - uses: actions/checkout@v4

From d065e1cb82f38371bece529aaeb572962ebe6cae Mon Sep 17 00:00:00 2001
From: "kevin.spurrier" <kevin.spurrier@rtx.com>
Date: Thu, 6 Nov 2025 15:58:42 -0600
Subject: [PATCH 2/4] Test  conttainer timeout

DO NOT MERGE ANY OF THESE
---
 .github/workflows/ngwpc-cicd.yml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/.github/workflows/ngwpc-cicd.yml b/.github/workflows/ngwpc-cicd.yml
index bac524671f..68be736bd2 100644
--- a/.github/workflows/ngwpc-cicd.yml
+++ b/.github/workflows/ngwpc-cicd.yml
@@ -1,7 +1,6 @@
 name: CI/CD Pipeline
 
 on:
-  workflow_dispatch:
   pull_request:
     branches: [main, nwm-main, development, release-candidate]
   push:
@@ -198,6 +197,7 @@ jobs:
           template: '@/contrib/sarif.tpl'
           output: 'trivy-results.sarif'
           severity: 'CRITICAL,HIGH'
+          timeout: 15m
       - name: Upload Trivy results to GitHub Security tab
         uses: github/codeql-action/upload-sarif@v3
         with:

From 9408749075c443751457e70419828dcafe88cf43 Mon Sep 17 00:00:00 2001
From: "kevin.spurrier" <kevin.spurrier@rtx.com>
Date: Fri, 7 Nov 2025 14:34:56 -0600
Subject: [PATCH 3/4] CI: Comment out failing non-configured SonarQube Scan

---
 .github/workflows/ngwpc-cicd.yml | 38 ++++++++++++++++----------------
 1 file changed, 19 insertions(+), 19 deletions(-)

diff --git a/.github/workflows/ngwpc-cicd.yml b/.github/workflows/ngwpc-cicd.yml
index 68be736bd2..1c4b4e1897 100644
--- a/.github/workflows/ngwpc-cicd.yml
+++ b/.github/workflows/ngwpc-cicd.yml
@@ -110,25 +110,25 @@ jobs:
           }
 
   # SonarQube scan (only runs on internal NGWPC self-hosted runners)
-  sonarqube-internal:
-    name: sonarqube-internal
-    if: (github.event_name == 'pull_request' || github.event_name == 'push') && github.repository_owner == 'NGWPC'
-    runs-on: self-hosted
-    needs: [setup, build, unit-test]
-    #TODO: Configure SonarQube Scans
-    continue-on-error: true
-    container:
-      image: sonarsource/sonar-scanner-cli
-      options: --entrypoint="" --user 0
-    steps:
-      - uses: actions/checkout@v4
-        with:
-          fetch-depth: 0
-      - name: SonarQube Scan
-        env:
-          SONAR_HOST_URL: ${{ secrets.SONAR_HOST_URL }}
-          SONAR_TOKEN: ${{ secrets.SONAR_TOKEN }}
-        run: sonar-scanner -X -Dsonar.verbose=true
+  #sonarqube-internal:
+  #  name: sonarqube-internal
+  #  if: (github.event_name == 'pull_request' || github.event_name == 'push') && github.repository_owner == 'NGWPC'
+  #  runs-on: self-hosted
+  #  needs: [setup, build, unit-test]
+  #  #TODO: Configure SonarQube Scans
+  #  continue-on-error: true
+  #  container:
+  #    image: sonarsource/sonar-scanner-cli
+  #    options: --entrypoint="" --user 0
+  #  steps:
+  #    - uses: actions/checkout@v4
+  #      with:
+  #        fetch-depth: 0
+  #    - name: SonarQube Scan
+  #      env:
+  #        SONAR_HOST_URL: ${{ secrets.SONAR_HOST_URL }}
+  #        SONAR_TOKEN: ${{ secrets.SONAR_TOKEN }}
+  #      run: sonar-scanner -X -Dsonar.verbose=true
 
   # CodeQL scan
   # TODO: Update to scan as desired.

From 001b4c1c4b550e79f96eb2088e7f0ad1ec5401f9 Mon Sep 17 00:00:00 2001
From: "kevin.spurrier" <kevin.spurrier@rtx.com>
Date: Fri, 7 Nov 2025 14:39:28 -0600
Subject: [PATCH 4/4] CI: Remove sonarqube-internal from needs list

---
 .github/workflows/ngwpc-cicd.yml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/.github/workflows/ngwpc-cicd.yml b/.github/workflows/ngwpc-cicd.yml
index 1c4b4e1897..bac07342e0 100644
--- a/.github/workflows/ngwpc-cicd.yml
+++ b/.github/workflows/ngwpc-cicd.yml
@@ -207,7 +207,7 @@ jobs:
     name: deploy-latest-on-development
     if: github.event_name == 'push' && github.ref_name == 'development'
     runs-on: ubuntu-latest
-    needs: [setup, build, unit-test, sonarqube-internal, codeql-scan, container-scanning]
+    needs: [setup, build, unit-test, codeql-scan, container-scanning]
     steps:
       - name: Tag image with 'latest'
         shell: bash