GitHub Actions Workflow Dependency Diagram
TL;DR: Visual representation of all 31 GitHub Actions workflows, their dependencies, and execution triggers.
Overview
This diagram shows the relationships between GitHub Actions workflows in this project. Workflows are organized by trigger type and show dependencies where applicable.Main CI/CD Pipeline
Quality Testing Workflows
Security & Compliance Workflows
Deployment Workflows
Documentation Workflows
Monitoring & Observability Workflows
Maintenance & Automation Workflows
Infrastructure Workflows
Build & Hygiene Workflows
Workflow Execution Frequency
Continuous (On Every Push/PR)
- ci.yaml
- quality-tests.yaml
- deployment-validation.yml (if deployment files changed)
- security-scan.yaml
- docs-validation.yaml (if docs changed)
- build-hygiene.yaml
Daily
- security-scan.yaml (3 AM UTC)
- gcp-drift-detection.yaml
- workflow-health-dashboard.yaml
- cost-tracking.yaml
- stale.yaml
Weekly
- quality-tests.yaml (Sunday 12 AM UTC)
- e2e-tests.yaml (Monday 2 AM UTC)
- gcp-compliance-scan.yaml
- track-skipped-tests.yaml
- weekly-reports.yaml (Sunday 9 AM UTC)
- link-checker.yaml (Sunday)
Hourly
- observability-alerts.yaml
On-Demand (Manual/Conditional)
- deploy-staging-gke.yaml (push to develop OR manual)
- deploy-production-gke.yaml (release OR manual with approval)
- release.yaml (tag push OR manual)
- bump-deployment-versions.yaml (release OR manual)
- dependabot-automerge.yaml (Dependabot PR only)
Workflow Dependencies & Blocking
Blocking Workflows (Must Pass for Merge)
- ci.yaml
- quality-tests.yaml
- deployment-validation.yml (if deployment files changed)
- security-scan.yaml
- build-hygiene.yaml
Informational Workflows (Don’t Block)
- weekly-reports.yaml
- cost-tracking.yaml
- dora-metrics.yaml
- observability-alerts.yaml
- stale.yaml
Required for Deployment
- ci.yaml (test job must pass)
- deployment-validation.yml (if deployment files changed)
- security-scan.yaml (HIGH/CRITICAL findings must be addressed)
Consolidation Roadmap
Phase 1: Documentation Workflows
Phase 2: Security Workflows
Phase 3: Deployment Validation Workflows
Performance Optimization Opportunities
Parallel Execution
Currently parallelized:- test job (3 Python versions)
- docker-build (3 image variants)
- docker-compose-smoke-test (3 configs)
- docker-multiplatform (2 architectures)
- regression-tests (4 splits via pytest-split)
Caching Improvements
Current caching:- Python dependencies (uv cache)
- Docker layer caching
- Workflow-level caching
- Cache test results for unchanged files
- Cache build artifacts between jobs
- Shared cache across workflows
Workflow Reusability
Extract to reusable workflows:- setup-python-deps (already a composite action)
- docker-build-and-push pattern
- deploy-to-gke pattern
- run-tests-with-coverage pattern
Related Documentation
- Workflows Reference: WORKFLOWS.mdx - Detailed workflow documentation
- Commands Reference: COMMANDS.mdx - All Makefile targets
- Validation Strategy: VALIDATION_STRATEGY.mdx - Tiered validation approach
- CI Configuration:
.github/workflows/- Workflow source files - Composite Actions:
.github/actions/- Reusable action components
Last Updated: 2025-11-16 (CI/CD Optimization - Phase 5) Total Workflows: 31 workflows Version: 1.0.0 Status: Active