Skip to main content

Проверка развертываний

Задания, ожидающие проверки, можно утвердить или отклонить.

Кто может использовать эту функцию?

Среды, секреты среды и правила защиты развертывания доступны в общедоступных репозиториях для всех текущих планов GitHub. Они недоступны в устаревших планах, таких как Бронза, Silver или Gold. Для доступа к средам, секретам сред и ветвям развертываний в частных или внутренних репозиториях необходимо использовать GitHub Pro, GitHub Team или GitHub Enterprise. Если вы находитесь на GitHub Free, GitHub Pro, или GitHub Team плана, других правил защиты развертывания, таких как таймер ожидания или обязательные рецензенты, доступны только для общедоступных репозиториев.

About required reviews in workflows

Jobs that reference an environment configured with required reviewers will wait for an approval before starting. While a job is awaiting approval, it has a status of "Waiting". If a job is not approved within 30 days, it will automatically fail.

For more information about environments and required approvals, see "Managing environments for deployment." For information about how to review deployments with the REST API, see "REST API endpoints for workflow runs."

Approving or rejecting a job

  1. Navigate to the workflow run that requires review. For more information about navigating to a workflow run, see "Viewing workflow run history."
  2. If the run requires review, you will see a notification for the review request. On the notification, click Review deployments.
  3. Select the job environment(s) to approve or reject. Optionally, leave a comment.
  4. Approve or reject:
    • To approve the job, click Approve and deploy. Once a job is approved (and any other deployment protection rules have passed), the job will proceed. At this point, the job can access any secrets stored in the environment.
    • To reject the job, click Reject. If a job is rejected, the workflow will fail.

Note

If the targeted environment is configured to prevent self-approvals for deployments, you will not be able to approve a deployment from a workflow run you initiated. For more information, see "Managing environments for deployment."

Bypassing deployment protection rules

If you have configured deployment protection rules that control whether software can be deployed to an environment, you can bypass these rules and force all pending jobs referencing the environment to proceed.

Note

  • You cannot bypass deployment protection rules if the environment has been configured to prevent admins from bypassing configured protection rules. For more information, see "Managing environments for deployment."
  • You can only bypass deployment protection rules during workflow execution when a job referencing the environment is in a "Pending" state.
  1. Navigate to the workflow run. For more information about navigating to a workflow run, see "Viewing workflow run history."
  2. To the right of Deployment protection rules, click Start all waiting jobs.
    Screenshot of the "Deployment protection rules" section with the "Start all waiting jobs" button outlined in orange.
  3. In the pop-up window, select the environments for which you want to bypass deployment protection rules.
  4. Under Leave a comment, enter a description for bypassing the deployment protection rules.
  5. Click I understand the consequences, start deploying.