ci(e2e): remove unused LOOP_* secrets from job env to avoid secrets context in expressions; rely only on DEV_REGISTRY_DOCKER_CFG

yachmenevas · yachmenevas · commit 1abf3fb54618 · 2025-11-16T16:25:49.000+03:00
Signed-off-by: Anton Yachmenev &lt;anton.yachmenev@flant.com&gt;
diff --git a/.github/workflows/e2e-matrix.yml b/.github/workflows/e2e-matrix.yml
@@ -96,8 +96,6 @@ jobs:
       PROFILE: sds-replicated-volume
       GO_VERSION: "1.24.6"
       TMP_ROOT: ${{ github.workspace }}/ci/dvp-e2e/tmp
-      LOOP_WEBHOOK: ${{ secrets.LOOP_WEBHOOK_URL || secrets.LOOP_WEBHOOK }}
-      LOOP_CHANNEL: ${{ secrets.LOOP_CHANNEL || 'test-virtualization-loop-alerts' }} # TODO: replace with channel secret after successful run
 
     outputs:
       run_id: ${{ steps.prep.outputs.run_id }}
@@ -200,10 +198,10 @@ jobs:
           REGISTRY_DOCKER_CFG="${REGISTRY_DOCKER_CFG}" scripts/inject_registry_cfg.sh -f "$VALS" -v "$REGISTRY_DOCKER_CFG"
 
       - name: Docker login from DEV_REGISTRY_DOCKER_CFG (optional)
-        if: ${{ secrets.DEV_REGISTRY_DOCKER_CFG != '' }}
+        if: ${{ env.REGISTRY_DOCKER_CFG != '' }}
         run: |
           set -euo pipefail
-          cfg=$(printf '%s' '${{ secrets.DEV_REGISTRY_DOCKER_CFG }}' | base64 -d)
+          cfg=$(printf '%s' "$REGISTRY_DOCKER_CFG" | base64 -d)
           reg_list=$(printf '%s' "$cfg" | jq -r '.auths | keys[]')
           for reg in $reg_list; do
             auth=$(printf '%s' "$cfg" | jq -r --arg r "$reg" '.auths[$r].auth // ""')
