metadata:
  annotations:
    prow.k8s.io/context: pull-verify-pr-content-policy
    prow.k8s.io/job: pull-verify-pr-content-policy
  creationTimestamp: "2026-04-07T11:33:54Z"
  generation: 10
  labels:
    component: jenkins
    created-by-prow: "true"
    env: cicd
    event-GUID: a6d6e660-3275-11f1-9485-3670de9f56c0
    owner: wei_zheng
    prow.k8s.io/build-id: "2041479575040430080"
    prow.k8s.io/context: pull-verify-pr-content-policy
    prow.k8s.io/id: d27e13d0-0e74-407c-95fc-4e405d9ebd74
    prow.k8s.io/is-optional: "false"
    prow.k8s.io/job: pull-verify-pr-content-policy
    prow.k8s.io/refs.base_ref: main
    prow.k8s.io/refs.org: PingCAP-QE
    prow.k8s.io/refs.pull: "4477"
    prow.k8s.io/refs.repo: ci
    prow.k8s.io/type: presubmit
    team: qe
  name: d27e13d0-0e74-407c-95fc-4e405d9ebd74
  namespace: apps
  resourceVersion: "1775561661087471004"
  uid: 5be22606-cd5b-4bf9-ab70-fa3706e39158
spec:
  agent: kubernetes
  cluster: default
  context: pull-verify-pr-content-policy
  decoration_config:
    gcs_configuration:
      bucket: gs://prow-tidb-logs
      path_strategy: explicit
    gcs_credentials_secret: gcs-credentials
    utility_images:
      clonerefs: gcr.io/k8s-prow/clonerefs:v20230601-43eb1068e4
      entrypoint: gcr.io/k8s-prow/entrypoint:v20230601-43eb1068e4
      initupload: gcr.io/k8s-prow/initupload:v20230601-43eb1068e4
      sidecar: gcr.io/k8s-prow/sidecar:v20230601-43eb1068e4
  job: pull-verify-pr-content-policy
  max_concurrency: 1
  namespace: prow-test-pods
  pod_spec:
    containers:
    - args:
      - |
        .ci/check-pr-content-policy.sh --base-sha "${PULL_BASE_SHA:?missing PULL_BASE_SHA}"
      command:
      - bash
      - -ceo
      - pipefail
      image: ghcr.io/pingcap-qe/cd/utils/release:v2026.3.29-14-g90ae7ef
      name: main
      resources:
        limits:
          cpu: 200m
          memory: 128Mi
  prowjob_defaults:
    tenant_id: GlobalDefaultID
  refs:
    base_link: https://github.com/PingCAP-QE/ci/commit/de4688cb7cf1f12fb8f0578730e333a14f388ae3
    base_ref: main
    base_sha: de4688cb7cf1f12fb8f0578730e333a14f388ae3
    org: PingCAP-QE
    pulls:
    - author: wuhuizuo
      author_link: https://github.com/wuhuizuo
      commit_link: https://github.com/PingCAP-QE/ci/pull/4477/commits/a57e954792893577b0b03aa6b6439f49e48eaa95
      head_ref: ci-architect/audit-private-clone-cred-exposure
      link: https://github.com/PingCAP-QE/ci/pull/4477
      number: 4477
      sha: a57e954792893577b0b03aa6b6439f49e48eaa95
      title: 'security: avoid persisting GitHub SSH keys in PR pipelines'
    repo: ci
    repo_link: https://github.com/PingCAP-QE/ci
  report: true
  rerun_command: /test pull-verify-pr-content-policy
  type: presubmit
status:
  build_id: "2041479575040430080"
  completionTime: "2026-04-07T11:34:20Z"
  description: Job succeeded.
  pendingTime: "2026-04-07T11:33:54Z"
  pod_name: d27e13d0-0e74-407c-95fc-4e405d9ebd74
  prev_report_states:
    gcsk8sreporter: success
    gcsreporter: success
    github-reporter: success
  startTime: "2026-04-07T11:33:53Z"
  state: success
  url: https://prow.tidb.net/view/gs/prow-tidb-logs/pr-logs/pull/PingCAP-QE_ci/4477/pull-verify-pr-content-policy/2041479575040430080