Extract bootstrap-nest-infrastructure into a separate workflow

[ahmedxgouda]

Proposed change

Resolves #4705

• Extracted bootstrap-nest-infrastructure into a separate workflow
• Added caching for Terraform plugins

Checklist

• Required: I followed the contributing workflow
• Required: I verified that my code works as intended and resolves the issue as described
• Required: I ran make check-test locally: all warnings addressed, tests passed
• I used AI for code, documentation, tests, or communication related to this PR

[coderabbitai]

Warning

Rate limit exceeded

@ahmedxgouda has exceeded the limit for the number of commits that can be reviewed per hour. Please wait 23 minutes and 4 seconds before requesting another review.

You’ve run out of usage credits. Purchase more in the billing tab.

⌛ How to resolve this issue?

After the wait time has elapsed, a review can be triggered using the @coderabbitai review command as a PR comment. Alternatively, push new commits to this PR.

We recommend that you space out your commits to avoid hitting the rate limit.

🚦 How do rate limits work?

CodeRabbit enforces hourly rate limits for each developer per organization.

Our paid plans have higher rate limits than the trial, open-source and free plans. In all cases, we re-allow further reviews after a brief timeout.

Please see our FAQ for further information.

ℹ️ Review info

⚙️ Run configuration

Configuration used: Path: .coderabbit.yaml

Review profile: ASSERTIVE

Plan: Pro

Run ID: 3630d894-580e-4b6a-90a2-d138f3ed6a4e

📥 Commits

Reviewing files that changed from the base of the PR and between 7260ec3 and c2d9352.

📒 Files selected for processing (2)

• .github/workflows/bootstrap-infrastructure.yaml
• .github/workflows/run-ci-cd.yaml

✨ Finishing Touches

🧪 Generate unit tests (beta)

• Create PR with unit tests

---

Thanks for using CodeRabbit! It's free for OSS, and your support helps us grow. If you like it, consider giving us a shout-out.

❤️ Share

• X
• Mastodon
• Reddit
• LinkedIn

_{Comment @coderabbitai help to get the list of available commands and usage tips.}

[sonarqubecloud]

Quality Gate passed

Issues
0 New issues
0 Accepted issues

Measures
0 Security Hotspots
0.0% Coverage on New Code
0.0% Duplication on New Code

See analysis details on SonarQube Cloud

[codecov]

Codecov Report

✅ All modified and coverable lines are covered by tests.
✅ Project coverage is 98.80%. Comparing base (7260ec3) to head (c2d9352).

Additional details and impacted files

@@                     Coverage Diff                     @@
##           feature/ci-cd-optimization    #4711   +/-   ##
===========================================================
  Coverage                       98.80%   98.80%           
===========================================================
  Files                             528      528           
  Lines                           16805    16805           
  Branches                         2364     2364           
===========================================================
  Hits                            16605    16605           
  Misses                            115      115           
  Partials                           85       85           

Flag	Coverage Δ
backend	99.50% <ø> (ø)
frontend	96.79% <ø> (ø)

Flags with carried forward coverage won't be shown. Click here to find out more.

---

Continue to review full report in Codecov by Sentry.

Legend - Click here to learn more
Δ = absolute <relative> (impact), ø = not affected, ? = missing data
Powered by Codecov. Last update 7260ec3...c2d9352. Read the comment docs.

🚀 New features to boost your workflow:

• ❄️ Test Analytics: Detect flaky tests, report on failures, and find test suite problems.
• 📦 JS Bundle Analysis: Save yourself from yourself by tracking and limiting bundle sizes in JS merges.

[cubic-dev-ai]

1 issue found across 2 files

Confidence score: 2/5

• There is a high-confidence, high-severity workflow risk in .github/workflows/bootstrap-infrastructure.yaml: both bootstrap environments are still managed with one environment’s region/external ID.
• This can cause the staging bootstrap job to overwrite production bootstrap settings, creating a concrete regression risk for infrastructure configuration.
• Given the direct production-impact potential, this is not low-risk to merge until environment-specific parameters are separated correctly.
• Pay close attention to .github/workflows/bootstrap-infrastructure.yaml - staging and production bootstrap context appears to be mixed, which can overwrite prod settings.

<sub>Reply with feedback, questions, or to request a fix.

Re-trigger cubic</sub>

[Wandji69]

This looks good to me.