-
Notifications
You must be signed in to change notification settings - Fork 14.5k
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
[v2-10-test] Backport pull_requttest_target removal
This is a bulk change that synchronizes dev/ci scripts for v2-10-test branch with main #45266 - including follow-ups. Rather than cherry-picking relevant PRs, this one gets the latest version of the scripts from main and updates the branch with some changes to adapt them to v2-10-test (such as bringing back python 3.8 support, removing some providers checks after the bulk move of providers and making sure all tests are passing. This is far easier than cherry-picking the changes, because for the v2-10-test we stopped cherry-picking CI changes which was deemed unnecessary (we used to do it for all previous branches) but this made it far more difficult (if not impossible) to cherry-pick individual changes. Fortunately, the CI scripts are maintained in the way that their latest version **should** in principle work for a v2-* branch and hopefully after just a few adjustments we should be able to synchronize the changes from main by updating all relevant CI/DEV scripts, dockerfile images, workflows, pre-commits etc. Add actions in codeql workflows to scan github workflow actions (#45534) * add actions in codeql workflows to scan github workflow actions * add actions in codeql workflows to scan github workflow actions CodeQL scanning can run always on all code (#45541) The CodeQL scannig is fast and having custom configuration to select which scanning to run should be run makes it unnecessarily complex We can just run all CodeQL scans always. This has been suggested by actions codeql scan itself. Add explicit permissions for all workflow-run workflows (#45548) Those workflows inherit permissions from the calling workflows but it's good to add explicit permissions to indicate what is needed and in case we will also use the workflows for other purposes in the future - default permissions for older repos might be write so it's best to be explicit about the permissions. Found by CodeQL scanning Remove contents: write permission from generate-constraints (#45558) The write permission cannot be set for PRs from forks in the call workflow - so we have to come back to implicit permissions and make explicit permissions passing a bit differently. (cherry picked from commit ae32ebc) Bump trove-classifiers from 2025.1.7.14 to 2025.1.10.15 (#45561) Bumps [trove-classifiers](https://github.com/pypa/trove-classifiers) from 2025.1.7.14 to 2025.1.10.15. - [Release notes](https://github.com/pypa/trove-classifiers/releases) - [Commits](pypa/trove-classifiers@2025.1.7.14...2025.1.10.15) --- updated-dependencies: - dependency-name: trove-classifiers dependency-type: direct:development update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> (cherry picked from commit f3fd262) Add optional --image-file-dir to store loaded files elsewhere (#45564) While backorting the "pull_request_target" removal to v2-10-test branches it turned out that there is not enough disk space on Public runner to load all 5 images and keep the file dump at the same time in the same filesystem. This PR allows to choose where the load/save files will be stored and in the github runner environment we store the files in "/mnt" wnich is a separate folder with 40GB free. (cherry picked from commit 6628049) Fix --from-pr feature for image load and stabilize help This is a follow-up after #45564 - it fixes the `--from-pr` and `--from-run` to work (it was failing with file does not exist). Also found out that gettempdir might return different directory depending on which is your designated tmp directory (for example in MacOS this is is a longer path in /var/.....) - so we have to force the default during help generation to always return "/tmp" so that the --help images do not change depending on which system you are and what your tmp directory is.
- Loading branch information
Showing
356 changed files
with
13,857 additions
and
11,298 deletions.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file was deleted.
Oops, something went wrong.
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,68 @@ | ||
| # Licensed to the Apache Software Foundation (ASF) under one | ||
| # or more contributor license agreements. See the NOTICE file | ||
| # distributed with this work for additional information | ||
| # regarding copyright ownership. The ASF licenses this file | ||
| # to you under the Apache License, Version 2.0 (the | ||
| # "License"); you may not use this file except in compliance | ||
| # with the License. You may obtain a copy of the License at | ||
| # | ||
| # http://www.apache.org/licenses/LICENSE-2.0 | ||
| # | ||
| # Unless required by applicable law or agreed to in writing, | ||
| # software distributed under the License is distributed on an | ||
| # "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY | ||
| # KIND, either express or implied. See the License for the | ||
| # specific language governing permissions and limitations | ||
| # under the License. | ||
| # | ||
| --- | ||
| name: 'Prepare all CI images' | ||
| description: 'Recreates current python CI images from artifacts for all python versions' | ||
| inputs: | ||
| python-versions-list-as-string: | ||
| description: 'Stringified array of all Python versions to test - separated by spaces.' | ||
| required: true | ||
| platform: | ||
| description: 'Platform for the build - linux/amd64 or linux/arm64' | ||
| required: true | ||
| runs: | ||
| using: "composite" | ||
| steps: | ||
| - name: "Cleanup docker" | ||
| run: ./scripts/ci/cleanup_docker.sh | ||
| shell: bash | ||
| # TODO: Currently we cannot loop through the list of python versions and have dynamic list of | ||
| # tasks. Instead we hardcode all possible python versions and they - but | ||
| # this should be implemented in stash action as list of keys to download. | ||
| # That includes 3.8 - 3.12 as we are backporting it to v2-10-test branch | ||
| # This is captured in https://github.com/apache/airflow/issues/45268 | ||
| - name: "Restore CI docker image ${{ inputs.platform }}:3.8" | ||
| uses: ./.github/actions/prepare_single_ci_image | ||
| with: | ||
| platform: ${{ inputs.platform }} | ||
| python: "3.8" | ||
| python-versions-list-as-string: ${{ inputs.python-versions-list-as-string }} | ||
| - name: "Restore CI docker image ${{ inputs.platform }}:3.9" | ||
| uses: ./.github/actions/prepare_single_ci_image | ||
| with: | ||
| platform: ${{ inputs.platform }} | ||
| python: "3.9" | ||
| python-versions-list-as-string: ${{ inputs.python-versions-list-as-string }} | ||
| - name: "Restore CI docker image ${{ inputs.platform }}:3.10" | ||
| uses: ./.github/actions/prepare_single_ci_image | ||
| with: | ||
| platform: ${{ inputs.platform }} | ||
| python: "3.10" | ||
| python-versions-list-as-string: ${{ inputs.python-versions-list-as-string }} | ||
| - name: "Restore CI docker image ${{ inputs.platform }}:3.11" | ||
| uses: ./.github/actions/prepare_single_ci_image | ||
| with: | ||
| platform: ${{ inputs.platform }} | ||
| python: "3.11" | ||
| python-versions-list-as-string: ${{ inputs.python-versions-list-as-string }} | ||
| - name: "Restore CI docker image ${{ inputs.platform }}:3.12" | ||
| uses: ./.github/actions/prepare_single_ci_image | ||
| with: | ||
| platform: ${{ inputs.platform }} | ||
| python: "3.12" | ||
| python-versions-list-as-string: ${{ inputs.python-versions-list-as-string }} |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Oops, something went wrong.