skill(build-and-sign): use platforms parameter for the 'albs-mcp' to build both on EL8 and EL9.

Reviewed-on: #33

.claude/skills/build-and-sign/SKILL.md

@@ -0,0 +1,72 @@
+---
+name: build-and-sign
+description: >-
+  Build and sign packages on ALBS (AlmaLinux Build System) using the albs-mcp
+  MCP server. Use when the user asks to build, rebuild, or sign packages, or
+  mentions ALBS builds, or package signing.
+---
+
+# Build and Sign Packages
+
+Build leapp-repository on ALBS for AlmaLinux-8 and AlmaLinux-9, then sign
+completed builds with the ELevate key.
+
+## Prerequisites
+
+- The `albs-mcp` MCP server must be running (configured in `.cursor/mcp.json`).
+- A valid JWT token must be configured for authenticated operations.
+
+## Workflow
+
+### Step 1: Determine the branch
+
+Get the current git branch to use as the build ref:
+
+```bash
+git rev-parse --abbrev-ref HEAD
+```
+
+The user may override the branch explicitly. If not, use the current branch.
+
+### Step 2: Create the build
+
+Call `create_build` via the `albs-mcp` MCP server **once** with both platforms:
+
+| Parameter   | Value                |
+|-------------|----------------------|
+| packages    | `["leapp-repository"]` |
+| platforms   | `["AlmaLinux-8", "AlmaLinux-9"]` |
+| branch      | current git branch (from Step 1) |
+| arch_list   | `["x86_64"]`        |
+
+This creates a single build containing tasks for both platforms. Record the returned **build ID**.
+
+### Step 3: Wait for the build to complete
+
+Poll the build with `get_build_info` until all tasks show `completed` or `failed`.
+Use exponential backoff: start at 60 seconds, increase up to 5 minutes between checks.
+
+If any task **fails**, report the failure to the user and ask whether to proceed
+with signing or investigate the failure.
+
+### Step 4: Sign the completed build
+
+Call `sign_build` with:
+
+| Parameter   | Value |
+|-------------|-------|
+| build_id    | the build ID from Step 2 |
+| sign_key_id | `3` (ELevate key) |
+
+### Step 5: Report results
+
+Present a summary:
+
+```
+Build ID: <id>
+URL: https://build.almalinux.org/build/<id>
+Platforms: AlmaLinux-8, AlmaLinux-9
+Build Status: completed
+Sign Task ID: <sign_id>
+Sign Status: idle
+```

SPECS/leapp-repository.spec

@@ -50,9 +50,10 @@ py2_byte_compile "%1" "%2"}
 # to create such an rpm. Instead, we are going to introduce new naming for
 # RHEL 8+ packages to be consistent with other leapp projects in future.
 
+Epoch:          1
 Name:           leapp-repository
 Version:        0.24.0
-Release:        1%{?dist}
+Release:        1%{?dist}.elevate.6
 Summary:        Repositories for leapp
 
 License:        ASL 2.0
@@ -66,6 +67,9 @@ BuildArch:      noarch
 ### PATCHES HERE
 # Patch0001:    filename.patch
 
+# AlmaLinux ELevate patch
+Patch0200:    leapp-repository-0.24.0-elevate.patch
+
 %description
 %{summary}
 
@@ -131,7 +135,7 @@ Requires:   cpio
 
 # Subpackage for managing fapolicyd rules for %{lpr_name} installed only if
 # fapolicyd is present on the system
-Requires:       (%{lpr_name}-fapolicyd = %{version}-%{release} if fapolicyd)
+Requires:       (%{lpr_name}-fapolicyd = %{epoch}:%{version}-%{release} if fapolicyd)
 
 # The leapp-repository rpm is renamed to %%{lpr_name}
 Obsoletes:      leapp-repository < 0.14.0-5
@@ -246,6 +250,8 @@ Requires:   fapolicyd
 # APPLY PATCHES HERE
 # %%patch -P 0001 -p1
 
+%patch -P 0200 -p1
+
 %build
 cp -a leapp*deps*el%{next_major_ver}.noarch.rpm repos/system_upgrade/%{repo_shortname}/files/bundled-rpms/
 
@@ -325,9 +331,13 @@ fi
 %config %{_sysconfdir}/leapp/files/*
 # uncomment to package installed configs
 #%%config %%{_sysconfdir}/leapp/actor_conf.d/*
+%exclude %{_sysconfdir}/leapp/files/device_driver_deprecation_data.json
+%exclude %{_sysconfdir}/leapp/files/pes-events.json
+%exclude %{_sysconfdir}/leapp/files/repomap.json
 %{_sysconfdir}/leapp/repos.d/*
 %{_sysconfdir}/leapp/transaction/*
 %{repositorydir}/*
+%exclude %{repositorydir}/system_upgrade/common/files/distro/centos/rpm-gpg/*
 %{leapp_python_sitelib}/leapp/cli/commands/*
 
 
@@ -340,6 +350,34 @@ fi
 
 
 %changelog
+* Tue Apr 14 2026 Yuriy Kohut <ykohut@almalinux.org> - 0.24.0-1.elevate.6
+- Enable upgrades to x86_64_v2: implement the ability to use a pre-built rootfs instead of bootstrapping the target userspace container via 'dnf install --installroot'.
+
+* Tue Apr 07 2026 Yuriy Kohut <ykohut@almalinux.org> - 0.24.0-1.elevate.5
+- ELevate vendors support for upstream 0.24.0-1 version (87c192519e8764f59516cca563816f062428a533)
+  - New upgrade paths: 8.10→9.9, 9.9→10.3 with prod certs
+  - Logrotate timer enablement for 8to9
+  - Net naming scheme for CS 9to10
+  - ~20 "Respect distro names in reports" commits — distro-aware report messages
+  - Network interface scanning and naming fixes
+  - Overlay mount fix (hugetlbfs exclusion)
+  - PulseAudio check for 9→10 upgrade
+  - Various livemode and quoting fixes
+
+* Tue Mar 10 2026 Yuriy Kohut <ykohut@almalinux.org> - 0.24.0-1.elevate.4
+- ELevate vendors support for upstream 0.24.0-1 version (34aeae1e023e61345a1bb020b42231a79a0be4a8)
+- Update upgrade path for almalinux: 9.8 -> 10.2
+
+* Fri Feb 27 2026 Yuriy Kohut <ykohut@almalinux.org> - 0.24.0-1.elevate.3
+- Update %{lpr_name}-fapolicyd package requirement to include epoch
+
+* Fri Feb 13 2026 Yuriy Kohut <ykohut@almalinux.org> - 0.24.0-1.elevate.2
+- Update ELevate patch:
+  - Setup repomap handler - combine all RepositoriesMapping messages (main + vendor)
+
+* Thu Feb 12 2026 Yuriy Kohut <ykohut@almalinux.org> - 0.24.0-1.elevate.1
+- ELevate vendors support for upstream 0.24.0-1 version (362613c38004dbe6feddadfaac2114b307c93484)
+
 * Tue Feb 10 2026 Matej Matuska <mmatuska@redhat.com> - 0.24.0-1
 - Rebase to new upstream 0.24.0
 - Introduce new IPU path 8.10 -> 9.8
@@ -360,6 +398,18 @@ fi
 - Inhibit the upgrade when converting system to a different linux distribution with enabled Secure Boot
 - Resolves: RHEL-128267, RHEL-95215, RHEL-102361, RHEL-46807, RHEL-100961, RHEL-42609, RHEL-33661, RHEL-19249, RHEL-119516
 
+* Tue Feb 10 2026 Yuriy Kohut <ykohut@almalinux.org> - 0.23.0-3.elevate.3
+- ELevate vendors support for upstream 0.23.0-3 version (78640b665ca1c94c51b397cb35f9aac2f3cbb5c4)
+
+* Thu Jan 29 2026 Yuriy Kohut <ykohut@almalinux.org> - 0.23.0-3.elevate.2
+- ELevate vendors support for upstream 0.23.0-3 version (38bc4db73d30c49b621dbe83d4b8550cb1fd0bc0)
+
+* Tue Jan 20 2026 Yuriy Kohut <ykohut@almalinux.org> - 0.23.0-3.elevate.1
+- ELevate vendors support for upstream 0.23.0-3 version (c8e7af181a22e6282caed2d83d70265b6f1c73ce)
+
+* Fri Jan 16 2026 Yuriy Kohut <ykohut@almalinux.org> - 0.23.0-2.elevate.3
+- ELevate vendors support for upstream 0.23.0-2 version (a316cbb1b2525e823a285fe51cc469580a8d6631)
+
 * Wed Dec 17 2025 Matej Matuska <mmatuska@redhat.com> - 0.23.0-3
 - Fix handling of LVM and Multipath during the upgrade
 - Fix remediation command for making symlinks in root directory relative
@@ -370,6 +420,18 @@ fi
 - Minor changes in logs and reports
 - Resolves: RHEL-14712, RHEL-30447, RHEL-19247, RHEL-127066, RHEL-124923, RHEL-119516
 
+* Tue Dec 16 2025 Yuriy Kohut <ykohut@almalinux.org> - 0.23.0-2.elevate.2
+- ELevate vendors support for upstream 0.23.0-2 version (4105452bc89b36359124f5a20d17b73b7512a928)
+
+* Mon Dec 01 2025 Yuriy Kohut <ykohut@almalinux.org> - 0.23.0-2.elevate.1
+- ELevate vendors support for upstream 0.23.0-2 version (eabab8c496a7d6a76ff1aa0d7e34b0345530e30a)
+
+* Fri Nov 28 2025 Yuriy Kohut <ykohut@almalinux.org> - 0.23.0-1.elevate.5
+- ELevate vendors support for upstream 0.23.0-1 version (eabab8c496a7d6a76ff1aa0d7e34b0345530e30a)
+
+* Thu Nov 14 2025 Yuriy Kohut <ykohut@almalinux.org> - 0.23.0-1.elevate.4
+- ELevate vendors support for upstream 0.23.0-1 version (249cd3b203d05937a4d4a02b484444291f4aed85)
+
 * Thu Nov 13 2025 Karolina Kula <kkula@redhat.com> - 0.23.0-2
 - Requires leapp-framework 6.2+
 - Detect potentially harmful third party python modules for the target python version
@@ -388,6 +450,19 @@ fi
 - Update the leapp data files
 - Resolves: RHEL-25838, RHEL-35446, RHEL-69601, RHEL-71882, RHEL-90098, RHEL-120328, RHEL-123886
 
+* Thu Nov 13 2025 Yuriy Kohut <ykohut@almalinux.org> - 0.23.0-1.elevate.3
+- ELevate vendors support for upstream 0.23.0-1 version (b7f862249e2227d2c5f3f6e33d74f8d2a2367a11)
+
+* Tue Sep 30 2025 Yuriy Kohut <ykohut@almalinux.org> - 0.23.0-1.elevate.2
+- ELevate vendors support for upstream 0.23.0-1 version (47fce173e75408d9a7a26225d389161caf72e244)
+
+* Fri Sep 12 2025 Yuriy Kohut <ykohut@almalinux.org> - 0.23.0-1.elevate.1
+- ELevate vendors support for upstream 0.23.0-1 version (dcf53c28ea9c3fdd03277abcdeb1d124660f7f8e)
+
+* Thu Sep 11 2025 Yuriy Kohut <ykohut@almalinux.org> - 0.22.0-5.elevate.4
+- Update ELevate patch:
+  - rebase to upstream 0.22.0-5 (hash 7a3e2f6c78fa827b18854dfe5b486a40453d2b05)
+
 * Thu Aug 14 2025 Karolina Kula <kkula@redhat.com> - 0.23.0-1
 - Rebase to new upstream 0.23.0
 - Enable in-place upgrades on CentOS Stream systems
@@ -396,6 +471,18 @@ fi
 - Update leapp upgrade data files
 - Resolves: RHEL-65599, RHEL-67627
 
+* Thu Aug 07 2025 Yuriy Kohut <ykohut@almalinux.org> - 0.22.0-5.elevate.3
+- Update ELevate patch:
+  - rebase to upstream 0.22.0-5 (hash 5d1ea992c2bee09b7c452e0a5107667ea12963ff)
+
+* Tue Jul 28 2025 Yuriy Kohut <ykohut@almalinux.org> - 0.22.0-5.elevate.2
+- Update ELevate patch:
+  - rebase to upstream 0.22.0-5 (hash 9658b0b0190fff131502d0e7516518d0e240adcc)
+
+* Mon Jul 21 2025 Yuriy Kohut <ykohut@almalinux.org> - 0.22.0-5.elevate.1
+- Update ELevate patch:
+  - rebase to upstream 0.22.0-5 (hash 3356c045fe2982f3a26b26b46258398b490a6d67)
+
 * Fri Jul 18 2025 Karolina Kula <kkula@redhat.com> - 0.22.0-5
 - Fix broken bootloader on Azure hybrid images for systems previously upgraded from RHEL 7
 - Load DNF configuration correctly when using DNF libraries
@@ -405,11 +492,29 @@ fi
 - Check the input format of the target version properly
 - Resolves: RHEL-5459, RHEL-38255,  RHEL-39095, RHEL-47472, RHEL-96238
 
+* Thu Jul 17 2025 Yuriy Kohut <ykohut@almalinux.org> - 0.22.0-4.elevate.3
+- Update ELevate patch:
+  - rebase to upstream 0.22.0-4 (hash 3356c045fe2982f3a26b26b46258398b490a6d67)
+
+* Wed Jul 09 2025 Yuriy Kohut <ykohut@almalinux.org> - 0.22.0-4.elevate.2
+- Update ELevate patch:
+  - rebase to upstream 0.22.0-4 (hash c3bef4d9e89d109aee226f64e54e2eed088e591b)
+  - change IPU and supported versions
+
+* Tue Jun 24 2025 Yuriy Kohut <ykohut@almalinux.org> - 0.22.0-4.elevate.1
+- Update ELevate patch:
+  - rebase to upstream 0.22.0-4 (hash 7c6bb64e550ccfefe4001e79fef44b7d69446c36)
+
 * Thu Jun 05 2025 Karolina Kula <kkula@redhat.com> - 0.22.0-4
 - Fix parsing of the kernel cmdline
 - Require leapp data with provided_data_streams 4.0+
 - Resolves: RHEL-67627
 
+* Thu May 15 2025 Yuriy Kohut <ykohut@almalinux.org> - 0.22.0-3.elevate.1
+- Update ELevate patch:
+  - rebase to upstream 0.22.0-3 (hash ffd6d8e456484630f99d98d5bff955914af02aa5)
+- Create symlinks of RHSM certs path like prod-certs/VERSION_MAJOR -> prod-certs/VERSION_MAJOR.VERSION_MINOR
+- Exclude CentOS packages public GPG keys
 
 * Wed May 14 2025 Petr Stodulka <pstodulk@redhat.com> - 0.22.0-3
 - Rebuild
@@ -427,6 +532,11 @@ fi
 - Update leapp upgrade data files
 - Resolves: RHEL-53801, RHEL-77945, RHEL-84978
 
+* Thu Feb 27 2025 Yuriy Kohut <ykohut@almalinux.org> - 0.22.0-1.elevate.1
+- ELevate vendors support for upstream 0.22.0-1 version
+- Update ELevate patch:
+  Correct the list of leapp and leapp-repository rpms, that should be preserved during the 9to10 upgrade
+
 * Fri Feb 14 2025 Petr Stodulka <pstodulk@redhat.com> - 0.22.0-1
 - Rebase to new upstream 0.22.0
 - Minor updates in generated reports
@@ -438,6 +548,10 @@ fi
 - Fix the bootloader workaround for upgrades on ARM machines - covering also differences on AWS
 - Resolves: RHEL-67621, RHEL-51072, RHEL-41193
 
+* Thu Jan 23 2025 Yuriy Kohut <ykohut@almalinux.org> - 0.21.0-5.elevate.1
+- Update ELevate patch:
+  - rabase to upstream 0.21.0-5
+
 * Fri Jan 17 2025 Petr Stodulka <pstodulk@redhat.com> - 0.21.0-5
 - Fix pes events scanner crashing when there are duplicate packages in the received instructions
 - Fix pes events scanner not respecting user’s transaction configuration
@@ -446,10 +560,41 @@ fi
 - Minor improvements in preupgrade reports
 - Resolves: RHEL-67621, RHEL-34570, RHEL-44596, RHEL-50076
 
+* Thu Dec 12 2024 Yuriy Kohut <ykohut@almalinux.org> - 0.21.0-4.elevate.5
+- Update ELevate patch:
+  - IPU workflow config actor: use distro.version() if python minor version >= 9 (like 3.9)
+- Add python3-distro package to EL9's Requires
+
+* Wed Dec 11 2024 Yuriy Kohut <ykohut@almalinux.org> - 0.21.0-4.elevate.4
+- Update ELevate patch:
+  - drop EuroLinux support
+
+* Fri Dec 06 2024 Yuriy Kohut <ykohut@almalinux.org> - 0.21.0-4.elevate.3
+- Update ELevate patch:
+  - remove_upgrade_efi_entry: revert reload EFI info, boot order has changed as Leapp upgrade efi entry was removed
+
+* Tue Dec 03 2024 Yuriy Kohut <ykohut@almalinux.org> - 0.21.0-4.elevate.2
+- Update ELevate patch:
+  - add_arm_bootloader_workaround, remove_upgrade_efi_entry: use specific to particular OS, EFI directory location path, like /boot/efi/EFI/$distro_dir
+  - remove_upgrade_efi_entry: reload EFI info, boot order has changed as Leapp upgrade efi entry was removed
+
+* Tue Nov 26 2024 Yuriy Kohut <ykohut@almalinux.org> - 0.21.0-4.elevate.1
+- Update ELevate patch:
+ - remove 0006-ReadOfKernelArgsError-fix-the-error.patch code as it is already on upstream
+ - add '9.6' to supported versions
+ - remove '9.6' target from upgrade path until it is not released
+ - Add postgreSQL aarch64 packages '6c7cb6ef305d49d6' signature
+- The package .spec:
+ - exclude data files (from /etc/leapp/files) which are part of leapp-data-*: device_driver_deprecation_data.json, pes-events.json, repomap.json
+
 * Tue Nov 19 2024 Matej Matuska <mmatuska@redhat.com> - 0.21.0-4
 - Use net.naming-scheme by default
 - Resolves: RHEL-23473
 
+* Tue Nov 19 2024 Yuriy Kohut <ykohut@almalinux.org> - 0.21.0-2.elevate.4
+- Update ELevate patch:
+ - extend update path for 8 and 8.10 with 9.5 target
+
 * Mon Nov 18 2024 Petr Stodulka <pstodulk@redhat.com> - 0.21.0-3
 - Introduce upgrade path 8.10 -> 9.6
 - Require leapp-framework 6.0+
@@ -468,6 +613,23 @@ fi
 - Resolves: RHEL-67621, RHEL-57064, RHEL-56251, RHEL-50686, RHEL-41193
 - Resolves: RHEL-34570, RHEL-26459, RHEL-23473, RHEL-16881, RHEL-3294
 
+* Mon Oct 07 2024 Yuriy Kohut <ykohut@almalinux.org> - 0.21.0-2.elevate.3
+- Update ELevate patch:
+ - remove '9.5' target from upgrade path until it is not released
+ - extend upgrade path with ability to elevate AlmaLinux to "8.7", "8.8", "8.9", "8.10" and "9.0", "9.1", "9.2", "9.3", "9.4" versions with --target option
+
+* Thu Aug 29 2024 Yuriy Kohut <ykohut@almalinux.org> - 0.21.0-2.elevate.2
+- Update ELevate patch:
+ - make sure 'efi_finalization_fix' step runs before 'kernelcmdlineconfig'
+ - fix no attribute 'Hints' error for 'leapp.reporting' module
+
+* Thu Aug 22 2024 Yuriy Kohut <ykohut@almalinux.org> - 0.21.0-2.elevate.1
+- ELevate vendors support
+
+* Tue Aug 20 2024 Yuriy Kohut <ykohut@almalinux.org> - 0.20.0-2.elevate.3
+- Add ELS key d07bf2a08d50eb66 SIG to all distros.
+
+
 * Mon Aug 19 2024 Petr Stodulka <pstodulk@redhat.com> - 0.21.0-2
 - Updated SPEC file to drop leapp repositories unrelated to IPU 8 -> 9
 - Resolves: RHEL-27847
@@ -480,6 +642,12 @@ fi
 - Introduce experimental upgrades in 'live' mode for the testing.
 - Resolves: RHEL-27847, RHEL-52993, RHEL-45280, RHEL-49748, RHEL-52186
 
+* Thu Aug 15 2024 Yuriy Kohut <ykohut@almalinux.org> - 0.20.0-2.elevate.2
+- Add PostgreSQL's gpg-pubkey-73e3b907-6581b071 key to the list of obsoleted ones for 9
+
+* Fri Aug 09 2024 Yuriy Kohut <ykohut@almalinux.org> - 0.20.0-2.elevate.1
+- Vendors support
+
 * Wed Jul 24 2024 Toshio Kuratomi <toshio@fedoraproject.org> - 0.20.0-5
 - Improve set_systemd_services_states logging
 - [IPU 7 -> 8] Fix detection of bootable device on RAID
@@ -492,6 +660,12 @@ fi
 - Fix upgrade on aarch64 via RHUI on AWS
 - Resolves: RHEL-33902, RHEL-38909, RHEL-30573, RHEL-43978, RHEL-39046, RHEL-39047, RHEL-39049
 
+* Wed Jul 24 2024 Yuriy Kohut <ykohut@almalinux.org> - 1:0.19.0-7.1
+- Add ELevate and TuxCare keys fingerprint as known
+
+* Fri Jun 21 2024 Yuriy Kohut <ykohut@almalinux.org> - 1:0.19.0-7
+- Implement Vendors support
+
 * Thu May 30 2024 Petr Stodulka <pstodulk@redhat.com> - 0.20.0-4
 - Enable new upgrade path RHEL 8.10 -> 9.5
 - Minor updates in reports
@@ -516,6 +690,10 @@ fi
   covering SAN
 - Resolves: RHEL-27847, RHEL-35240
 
+* Wed Apr 24 2024 Yuriy Kohut <ykohut@almalinux.org> - 1:0.19.0-6
+- Enable CentOS Stream release 8 to 9 elevation
+- Update actor.py to support NVMe device enumeration
+
 * Tue Feb 20 2024 Petr Stodulka <pstodulk@redhat.com> - 0.20.0-2
 - Fallback to original RHUI solution on AWS to fix issues caused by changes in RHUI client
 - Resolves: RHEL-16729
@@ -552,6 +730,9 @@ fi
 - Bump leapp-repository-dependencies to 10
 - Resolves: RHEL-1774, RHEL-16729
 
+* Wed Jan 10 2024 Yuriy Kohut <ykohut@almalinux.org> - 1:0.19.0-5
+- AlmaLinux/CentOS/Oracle/Rocky/EuroLinux support (phase 1)
+
 * Thu Nov 16 2023 Petr Stodulka <pstodulk@redhat.com> - 0.19.0-5
 - Enable new upgrade path for RHEL 8.10 -> RHEL 9.4 (including RHEL with SAP HANA)
 - Introduce generic transition of systemd services states during the IPU
@@ -1223,4 +1404,3 @@ fi
 * Wed Nov 07 2018 Petr Stodulka <pstodulk@redhat.com> - 0.3-1
 - Initial RPM
   Resolves: #1636481
-