dotnet · Copilot · Dec 17, 2025 · Dec 17, 2025 · Dec 17, 2025 · Dec 17, 2025
@@ -132,6 +132,17 @@ jobs:
           BuildConfig: $(buildConfiguration)
           OPENSSL_ENABLE_SHA1_SIGNATURES: 1
 
+    ############### PUBLISH SDK ARTIFACTS ###############
+    # Publishes the built SDK installer artifacts (zip, tar.gz, pkg, exe, msi, deb, rpm) to pipeline artifacts.
+    # This enables validation and troubleshooting, particularly for PRs where local build output isn't available.
+    - task: ${{ parameters.oneESCompat.publishTaskPrefix }}PublishPipelineArtifact@1
+      displayName: 🟣 Publish SDK Artifacts
+      inputs:
+        targetPath: $(Build.SourcesDirectory)/artifacts/packages/$(buildConfiguration)/Shipping
+        artifactName: $(System.PhaseName)_SDK
+      continueOnError: true
+      condition: succeededOrFailed()
+
 ############### PUBLISH STAGE ############### 
 - ${{ if ne(variables['Build.Reason'], 'PullRequest') }}: 
   - stage: publish 
     displayName: Publish 
     dependsOn: [] 
     jobs: 
     - template: /eng/common/templates-official/job/publish-build-assets.yml@self 
       parameters: 
         publishUsingPipelines: true 
         publishAssetsImmediately: true 
         isAssetlessBuild: true 
         repositoryAlias: self 
         pool: 
           name: $(DncEngInternalBuildPool) 
           image: 1es-windows-2022 
           os: windows 
 templateContext: 
   sdl: 
     binskim: 
       analyzeTargetGlob: +:f|eng\**\*.props;+:f|artifacts\bin\**\*.dll;+:f|artifacts\bin\**\*.exe;-:f|artifacts\bin\**\msdia140.dll;-:f|artifacts\bin\**\pgort140.dll;-:f|artifacts\bin\*Tests\**;-:f|**\Microsoft.NET.Runtime.Emscripten**\tools\**;-:f|**\CodeCoverage\**;-:f|artifacts\bin\**\capstone.dll; 
 sdl: 
   sourceAnalysisPool: 
     name: $(DncEngInternalBuildPool) 
     image: 1es-windows-2022 
     os: windows 
   policheck: 
     enabled: true 
   tsa: 
     enabled: true 
   binskim: 
     enabled: true 
   ${{ if or(eq(parameters.runTestBuild, true), eq(variables['Build.Reason'], 'PullRequest')) }}: 
     componentgovernance: 
       # Refdoc: https://docs.opensource.microsoft.com/tools/cg/component-detection/variables/ 
       ignoreDirectories: artifacts, .packages 
 ############### PUBLISH STAGE ############### 
 - ${{ if ne(variables['Build.Reason'], 'PullRequest') }}: 
   - stage: publish 
     displayName: Publish 
     dependsOn: [] 
     jobs: 
     - template: /eng/common/templates-official/job/publish-build-assets.yml@self 
       parameters: 
         publishUsingPipelines: true 
         publishAssetsImmediately: true 
         isAssetlessBuild: true 
         repositoryAlias: self 
         pool: 
           name: $(DncEngInternalBuildPool) 
           image: 1es-windows-2022 
           os: windows 
 templateContext: 
   sdl: 
     binskim: 
       analyzeTargetGlob: +:f|eng\**\*.props;+:f|artifacts\bin\**\*.dll;+:f|artifacts\bin\**\*.exe;-:f|artifacts\bin\**\msdia140.dll;-:f|artifacts\bin\**\pgort140.dll;-:f|artifacts\bin\*Tests\**;-:f|**\Microsoft.NET.Runtime.Emscripten**\tools\**;-:f|**\CodeCoverage\**;-:f|artifacts\bin\**\capstone.dll; 
 sdl: 
   sourceAnalysisPool: 
     name: $(DncEngInternalBuildPool) 
     image: 1es-windows-2022 
     os: windows 
   policheck: 
     enabled: true 
   tsa: 
     enabled: true 
   binskim: 
     enabled: true 
   ${{ if or(eq(parameters.runTestBuild, true), eq(variables['Build.Reason'], 'PullRequest')) }}: 
     componentgovernance: 
       # Refdoc: https://docs.opensource.microsoft.com/tools/cg/component-detection/variables/ 
       ignoreDirectories: artifacts, .packages 
     ############### TESTING ###############
     - ${{ if eq(parameters.runTests, true) }}:
       - ${{ if eq(parameters.runAoTTests, true) }}: