Merge pull request #2 from Bobbins228/test-sync-workflow

Test sync workflow

Author: Bobbins228

.github/build/Containerfile

@@ -5,10 +5,18 @@ LABEL summary="Toolchain for running pre-commit hooks." \
     io.k8s.display-name="Pre-Commit Toolchain"
 
 USER root
-RUN dnf install nodejs
+RUN dnf install nodejs -y && \
+    dnf clean all && \
+    rm -rf /var/cache/dnf
+ADD https://mirror.openshift.com/pub/openshift-v4/clients/oc/latest/linux/oc.tar.gz $TMPDIR/
+RUN tar -C /usr/local/bin -xvf $TMPDIR/oc.tar.gz && \
+    chmod +x /usr/local/bin/oc && \
+    rm $TMPDIR/oc.tar.gz
 USER $USERID
 
-COPY requirements-dev.txt /tmp/requirements-dev.txt
-RUN python -m pip install -r /tmp/requirements-dev.txt
+RUN pip3 install poetry && \
+    poetry config virtualenvs.create false
+COPY pyproject.toml ./
+RUN poetry install
 
 CMD bash

.github/build/README.md

@@ -1,3 +1,5 @@
 # Pre-Commit Build Artifacts
 
-This directory contains the artifacts required to build the codeflare-sdk pre-commit image. As of right now, we will need to manually update `requirements-dev.txt` in this directory as well.
+This directory contains the artifacts required to build the codeflare-sdk pre-commit image.
+
+To build the image run `podman build -f .github/build/Containerfile .` from the root directory.

.github/build/requirements-dev.txt

@@ -0,0 +1,25 @@
+name: Label new issues as needs-triage and add to CodeFlare Sprint Board
+on:
+  issues:
+    types:
+      - opened
+jobs:
+  add_label:
+    name: Add needs-triage label to new issues
+    runs-on: ubuntu-latest
+    permissions:
+      issues: write
+    steps:
+      - uses: actions/checkout@v3
+      - run: gh issue edit ${{ github.event.issue.number }} --add-label "triage/needs-triage"
+        env:
+          GH_TOKEN: ${{ github.token }}
+
+  add-to-project:
+    name: Add issue to project
+    runs-on: ubuntu-latest
+    steps:
+      - uses: actions/[email protected]
+        with:
+          project-url: https://github.com/orgs/project-codeflare/projects/8
+          github-token: ${{ secrets.CODEFLARE_MACHINE_ACCOUNT_TOKEN }}

.github/workflows/auto-add-issues.yaml

@@ -20,10 +20,10 @@ jobs:
     - name: Install dependencies
       run: |
         python -m pip install --upgrade pip
-        pip install pytest==6.2.4
-        pip install pytest-mock==3.6.1
-        pip install coverage
-        if [ -f requirements.txt ]; then pip install -r requirements.txt; fi
+        pip install poetry
+        poetry config virtualenvs.create false
+        poetry lock --no-update
+        poetry install --with test
     - name: Generate coverage report
       run: |
         coverage run -m --source=src pytest -v tests/unit_test.py

.github/workflows/coverage-badge.yaml

@@ -0,0 +1,18 @@
+# This workflow will build the CodeFlare Operator image and push it to the opendatahub image registry as well as update versions in the MakeFile and README
+
+name: Fork Sync
+
+on:
+  workflow_dispatch:
+
+jobs:
+  sync:
+    runs-on: ubuntu-latest
+
+    steps:
+    - uses: actions/checkout@v3
+    - uses: tgymnich/[email protected]
+      with:
+        token: ${{ secrets.CODEFLARE_MACHINE_ACCOUNT_TOKEN }}
+        base: main
+        head: main

.github/workflows/fork-sync.yaml

@@ -0,0 +1,67 @@
+name: Notebook Image Build and Push
+
+on:
+    workflow_dispatch:
+        inputs:
+            release-version:
+              type: string
+              required: true
+              description: 'Version number (for example: 0.1.0)'
+            is-stable:
+              description: 'Select if the built image should be tagged as stable'
+              required: true
+              type: boolean
+            quay-organization:
+              description: 'Quay organization used to push the built images to'
+              required: true
+              default: 'project-codeflare'
+            python_version:
+              type: string
+              default: "3.8"
+              required: true
+            poetry_version:
+              type: string
+              default: "1.5.1"
+              required: true
+
+jobs:
+    release:
+        runs-on: ubuntu-latest
+        steps:
+            - name: Cleanup
+              run: |
+                ls -lart
+                echo "Initial status:"
+                df -h
+                echo "Cleaning up resources:"
+                sudo swapoff -a
+                sudo rm -f /swapfile
+                sudo apt clean
+                sudo rm -rf /usr/share/dotnet
+                sudo rm -rf /opt/ghc
+                sudo rm -rf "/usr/local/share/boost"
+                sudo rm -rf "$AGENT_TOOLSDIRECTORY"
+                docker rmi $(docker image ls -aq)
+                echo "Final status:"
+                df -h
+            - name: Checkout the repository
+              uses: actions/checkout@v3
+            - name: Install Python
+              uses: actions/setup-python@v4
+              with:
+                python-version: ${{ github.event.inputs.python_version }}
+            - name: Image Build
+              run: |
+                cd custom-nb-image
+                podman build --build-arg SDK_VERSION="${{ github.event.inputs.release-version }}" -t quay.io/${{ github.event.inputs.quay-organization }}/notebook:v${{ github.event.inputs.release-version }} .
+            - name: Login to Quay.io
+              uses: redhat-actions/podman-login@v1
+              with:
+                registry: quay.io
+                username: ${{ secrets.QUAY_ID }}
+                password: ${{ secrets.QUAY_TOKEN }}
+            - name: Image Push
+              run: podman push quay.io/${{ github.event.inputs.quay-organization }}/notebook:v${{ github.event.inputs.release-version }}
+            - name: Image Push Stable
+              if: ${{ inputs.is-stable }}
+              run: podman push quay.io/${{ github.event.inputs.quay-organization }}/notebook:v${{ github.event.inputs.release-version }} quay.io/${{ github.event.inputs.quay-organization }}/notebook:stable

.github/workflows/image-build-and-push.yaml

@@ -0,0 +1,50 @@
+name: Nightly Image Build
+
+on:
+    workflow_dispatch:
+    push:
+      branches:
+        - main
+
+env:
+    PYTHON_VERSION: 3.8
+    POETRY_VERSION: 1.5.1
+    QUAY_ORGANIZATION: 'project-codeflare'
+    SDK_FILE: 'codeflare_sdk-0.0.0.dev0.tar.gz'
+    IMAGE_TAG: 'dev'
+
+jobs:
+    nightly-build:
+        runs-on: ubuntu-latest
+        steps:
+            - name: Checkout the repository
+              uses: actions/checkout@v3
+            - name: Install Python
+              uses: actions/setup-python@v4
+              with:
+                python-version: ${{ env.PYTHON_VERSION }}
+            - name: Install Poetry
+              uses: abatilo/actions-poetry@v2
+              with:
+                poetry-version: ${{ env.POETRY_VERSION }}
+            - name: Run poetry install
+              run: poetry install --with docs
+            - name: Run poetry build
+              run: poetry build
+            - name: Copy SDK package
+              run: cp dist/${SDK_FILE} custom-nb-image
+            - name: Modify Dockerfile to use locally built SDK
+              run: |
+                sed -i "s/ARG SDK_VERSION=.*/COPY ${{ env.SDK_FILE }} ./" custom-nb-image/Dockerfile
+                sed -i "s/codeflare-sdk==.*/${{ env.SDK_FILE }}\\\\/" custom-nb-image/Dockerfile
+            - name: Image Build
+              working-directory: custom-nb-image
+              run: docker build -t quay.io/${{ env.QUAY_ORGANIZATION }}/notebook:${{ env.IMAGE_TAG }} .
+            - name: Login to Quay.io
+              uses: docker/login-action@v2
+              with:
+                registry: quay.io
+                username: ${{ secrets.QUAY_ID }}
+                password: ${{ secrets.QUAY_TOKEN }}
+            - name: Image Push
+              run: docker push quay.io/${{ env.QUAY_ORGANIZATION }}/notebook:${{ env.IMAGE_TAG }}

.github/workflows/nightly-image-build.yaml

@@ -7,8 +7,8 @@ on:
               type: string
               required: true
               description: 'Version number (for example: 0.1.0)'
-            is-latest:
-              description: 'Select if the built image should be tagged as latest'
+            is-stable:
+              description: 'Select if the built image should be tagged as stable'
               required: true
               type: boolean
             quay-organization:
@@ -23,12 +23,18 @@ on:
               type: string
               default: "1.5.1"
               required: true
+            codeflare-repository-organization:
+              type: string
+              default: "project-codeflare"
 
 jobs:
     release:
         runs-on: ubuntu-latest
         permissions:
             contents: write
+            id-token: write  # This permission is required for trusted publishing
+        env:
+            PR_BRANCH_NAME: adjustments-release-${{ github.event.inputs.release-version }}
         steps:
             - name: Checkout the repository
               uses: actions/checkout@v3
@@ -48,34 +54,49 @@ jobs:
               run: poetry build
             - name: Create new documentation
               run: poetry run pdoc --html -o docs src/codeflare_sdk && pushd docs && rm -rf cluster job utils && mv codeflare_sdk/* . && rm -rf codeflare_sdk && popd && find docs -type f -name "*.html" -exec bash -c "echo '' >> {}" \;
-            - name: Set Pypi token
-              run: poetry config pypi-token.pypi ${{ secrets.PYPI_TOKEN }}
-            - name: Publish new release to Pypi repository
-              run: poetry publish
 
             - name: Commit changes in docs
               uses: stefanzweifel/git-auto-commit-action@v4
               with:
                 file_pattern: 'docs'
                 commit_message: "Changes in docs for release: v${{ github.event.inputs.release-version }}"
+                create_branch: true
+                branch: ${{ env.PR_BRANCH_NAME }}
+            - name: Create a PR with code changes
+              run: |
+                  if git branch -a | grep "${{ env.PR_BRANCH_NAME }}"; then
+                    GIT_BRANCH=${GITHUB_REF#refs/heads/}
+                    gh pr create --base "$GIT_BRANCH" --fill --head "${{ env.PR_BRANCH_NAME }}" --label "lgtm" --label "approved"
+                  fi
+              env:
+                GITHUB_TOKEN: ${{ secrets.CODEFLARE_MACHINE_ACCOUNT_TOKEN }}
+            - name: Wait until PR with code changes is merged
+              run: |
+                  if git branch -a | grep "${{ env.PR_BRANCH_NAME }}"; then
+                    timeout 3600 bash -c 'until [[ $(gh pr view '${{ env.PR_BRANCH_NAME }}' --json state --jq .state) == "MERGED" ]]; do sleep 5 && echo "$(gh pr view '${{ env.PR_BRANCH_NAME }}' --json state --jq .state)"; done'
+                  fi
+              env:
+                GITHUB_TOKEN: ${{ github.TOKEN }}
             - name: Create Github release
               uses: ncipollo/release-action@v1
               with:
                   tag: "v${{ github.event.inputs.release-version }}"
+            - name: Publish package distributions to PyPI
+              uses: pypa/gh-action-pypi-publish@release/v1
 
-            - name: Image Build
+            - name: Notebook Image Build and Push
               run: |
-                cd custom-nb-image
-                docker build --build-arg SDK_VERSION="${{ github.event.inputs.release-version }}" -t quay.io/${{ github.event.inputs.quay-organization }}/notebook:v${{ github.event.inputs.release-version }} .
-                docker tag quay.io/${{ github.event.inputs.quay-organization }}/notebook:v${{ github.event.inputs.release-version }} quay.io/${{ github.event.inputs.quay-organization }}/notebook:latest
-            - name: Login to Quay.io
-              uses: docker/login-action@v2
-              with:
-                registry: quay.io
-                username: ${{ secrets.QUAY_ID }}
-                password: ${{ secrets.QUAY_TOKEN }}
-            - name: Image Push
-              run: docker push quay.io/${{ github.event.inputs.quay-organization }}/notebook:v${{ github.event.inputs.release-version }}
-            - name: Image Push Latest
-              if: ${{ inputs.is-latest }}
-              run: docker push quay.io/${{ github.event.inputs.quay-organization }}/notebook:latest
+                gh workflow run image-build-and-push.yaml --repo ${{ github.event.inputs.codeflare-repository-organization }}/codeflare-sdk --ref ${{ github.ref }} --field is-stable=${{ github.event.inputs.is-stable }} --field release-version=${{ github.event.inputs.release-version }} --field quay-organization=${{ github.event.inputs.quay-organization }}
+              env:
+                GITHUB_TOKEN: ${{ secrets.CODEFLARE_MACHINE_ACCOUNT_TOKEN }}
+              shell: bash
+
+            - name: Wait for Notebook image build and push to finish
+              run: |
+                # wait for a while for Run to be started
+                sleep 5
+                run_id=$(gh run list --workflow image-build-and-push.yaml --repo ${{ github.event.inputs.codeflare-repository-organization }}/codeflare-sdk --limit 1 --json databaseId --jq .[].databaseId)
+                gh run watch ${run_id} --repo ${{ github.event.inputs.codeflare-repository-organization }}/codeflare-sdk --interval 10 --exit-status
+              env:
+                GITHUB_TOKEN: ${{ secrets.CODEFLARE_MACHINE_ACCOUNT_TOKEN }}
+              shell: bash

.github/workflows/precommit.yaml renamed to .github/workflows/pre-commit.yaml

@@ -0,0 +1,31 @@
+name: Python Tests
+
+on:
+  push:
+    branches: [ main ]
+  pull_request:
+    branches: [ main ]
+
+jobs:
+  unit-tests:
+
+    runs-on: ubuntu-latest
+    container:
+      image: quay.io/project-codeflare/codeflare-sdk-precommit:v0.0.3
+    steps:
+      - uses: actions/checkout@v3
+      - name: Install poetry
+        run: pip install poetry
+      - uses: actions/setup-python@v4
+        with:
+          python-version: '3.8'
+      - name: Install dependencies
+        run: |
+          poetry config virtualenvs.create false
+          poetry lock --no-update
+          poetry install --with test
+      - name: Test with pytest and check coverage
+        run: |
+          coverage run -m --source=src pytest -v tests/unit_test.py
+          coverage=$(coverage report -m | tail -1 | tail -c 4 | head -c 2)
+          if (( $coverage < 90 )); then exit 1; else echo "Coverage passed, ${coverage}%"; fi

.github/workflows/python-app.yml

@@ -4,7 +4,6 @@ __pycache__/
 .coverage
 Pipfile
 Pipfile.lock
-poetry.lock
 .venv*
 build/
 tls-cluster-namespace