ci: publish S3 via geniex repo to satisfy OIDC trust

[RemiliaForever (RemiliaForever)]

Why

After the qcom-ai-hub/geniex → qualcomm/nexa-sdk migration, the publish-s3
job can no longer push to S3: the github-bitsyfactory IAM role's OIDC trust
only allows repo:qcom-ai-hub/geniex, not qualcomm/nexa-sdk. We are not
allowed to touch the trust policy.

What

Instead of touching IAM, the still-trusted geniex repo publishes on our behalf:

• This repo: publish-s3 no longer uploads to S3 directly. It dispatches
  geniex's chore/publish-s3 workflow (via GH_PAT, --ref chore/publish-s3),
  passing the tag and this run's run_id, then gh run watch --exit-status
  watches the geniex run so an S3 failure still fails this job rather than
  passing silently. package-release is unchanged — its release-assets
  artifact is the cross-repo data source.
• Removed the now-unused AWS actions (configure-multiple-aws-roles,
  configure-aws-profile) and release_s3_manifest.py — they live on the
  geniex chore/publish-s3 branch now.

The geniex side is a trimmed, single-job release.yml on a long-lived
chore/publish-s3 branch (never merged to geniex main); it downloads our
release-assets artifact cross-repo and uploads to
s3://qaihub-public-assets/qai-hub-geniex/ under geniex's trusted identity.

Verified

Smoke-tested the full cross-repo path end to end with a synthetic
release-assets artifact + a v0.0.0-rc.test prerelease dispatch:

• ✅ cross-repo artifact download (GH_PAT, actions:read on nexa-sdk)
• ✅ AWS OIDC role assumption from the chore/publish-s3 branch (trust is not
  ref-pinned)
• ✅ manifest generation + S3 upload; objects publicly reachable; is_prerelease
  / llama_sha / htp_signed propagate correctly; latest pointers correctly
  skipped for the prerelease

Requires

• GH_PAT secret in both repos must be a token with actions:write on
  geniex + actions:read on nexa-sdk (already configured).

Notes

• release-assets retention is 1 day; geniex must run shortly after dispatch
  (job ordering ensures this).
• The IAM role has an explicit DenyDeleteS3 — publish-s3 can only upload, never
  delete (matches the "published assets are immutable" constraint).

[Copilot]

Pull request overview

Routes S3 publishing through the still-trusted qcom-ai-hub/geniex repository to satisfy the existing AWS OIDC trust policy after the geniex → nexa-sdk migration, while keeping nexa-sdk as the source of release artifacts.

Changes:

• Reworks publish-s3 to dispatch and then watch a qcom-ai-hub/geniex workflow run (using GH_PAT) instead of uploading to S3 directly.
• Removes local AWS credential/config actions and the local S3 manifest generator script (now hosted in geniex on chore/publish-s3).
• Updates release documentation to point to the relocated manifest schema/script.

Reviewed changes

Copilot reviewed 7 out of 7 changed files in this pull request and generated 1 comment.

Show a summary per file

File	Description
notes/release.md	Updates the manifest/schema documentation to reflect cross-repo S3 publishing and link to geniex’s script.
.github/workflows/release.yml	Changes publish-s3 to dispatch and watch the geniex workflow instead of assuming AWS role and uploading directly.
.github/scripts/release_s3_manifest.py	Removes the local manifest generator (moved to geniex branch).
.github/actions/configure-multiple-aws-roles/action.yml	Removes the unused composite action previously used for AWS role configuration.
.github/actions/configure-aws-profile/index.js	Removes the unused AWS profile configurator implementation.
.github/actions/configure-aws-profile/cleanup.js	Removes the unused cleanup script tied to the AWS profile action.
.github/actions/configure-aws-profile/action.yml	Removes the unused AWS profile action definition.

---

💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.