From ead202a8a995b90725e16a0e619c49653a755fad Mon Sep 17 00:00:00 2001 From: Mykyta-Serbynevskyi Date: Wed, 1 Feb 2023 00:00:02 +0200 Subject: [PATCH] introduce new pattern of GH PAT usage for #2641 --- .../workflows/approve-and-merge-dispatch.yml | 9 +-- .../workflows/commands-for-testing-tool.yml | 7 -- .../workflows/connector_integration_tests.yml | 4 +- .github/workflows/deploy-oss-catalog.yml | 7 +- .github/workflows/gke-kube-test-command.yml | 12 +-- .github/workflows/gradle.yml | 81 ++++++------------- .../label-github-issues-by-context.yml | 12 +-- .../workflows/label-github-issues-by-path.yml | 10 +-- .github/workflows/label-prs-by-context.yml | 12 +-- .../workflows/notify-on-push-to-master.yml | 10 +-- .../publish-cdk-command-manually.yml | 2 +- .github/workflows/publish-command.yml | 44 ++++------ .../workflows/publish-connector-command.yml | 14 ++-- .github/workflows/publish-helm-charts.yml | 2 +- .github/workflows/publish-oss-for-cloud.yml | 12 +-- .github/workflows/release-airbyte-os.yml | 14 ++-- .github/workflows/slash-commands.yml | 13 +-- .../terminate-zombie-build-instances.yml | 2 +- .github/workflows/test-command.yml | 14 +--- .../workflows/test-performance-command.yml | 12 +-- 20 files changed, 79 insertions(+), 214 deletions(-) diff --git a/.github/workflows/approve-and-merge-dispatch.yml b/.github/workflows/approve-and-merge-dispatch.yml index 8c7e212a3be8..3794034c867f 100644 --- a/.github/workflows/approve-and-merge-dispatch.yml +++ b/.github/workflows/approve-and-merge-dispatch.yml @@ -8,18 +8,11 @@ jobs: steps: - name: Checkout Airbyte uses: actions/checkout@v3 - - name: Check PAT rate limits - run: | - ./tools/bin/find_non_rate_limited_PAT \ - ${{ secrets.AIRBYTEIO_PAT }} \ - ${{ secrets.OCTAVIA_GITHUB_RUNNER_TOKEN }} \ - ${{ secrets.SUPERTOPHER_PAT }} - - name: Auto Approve Slash Command Dispatch uses: peter-evans/slash-command-dispatch@v3 id: scd with: - token: ${{ env.PAT }} + token: ${{ secrets.GH_PAT_MAINTENANCE_OCTAVIA }} permission: write issue-type: pull-request repository: airbytehq/airbyte-cloud diff --git a/.github/workflows/commands-for-testing-tool.yml b/.github/workflows/commands-for-testing-tool.yml index 460d8e4872f1..e291fb060567 100644 --- a/.github/workflows/commands-for-testing-tool.yml +++ b/.github/workflows/commands-for-testing-tool.yml @@ -15,13 +15,6 @@ jobs: steps: - name: Checkout Airbyte uses: actions/checkout@v3 - - name: Check PAT rate limits - run: | - ./tools/bin/find_non_rate_limited_PAT \ - ${{ secrets.AIRBYTEIO_PAT }} \ - ${{ secrets.OSS_BUILD_RUNNER_GITHUB_PAT }} \ - ${{ secrets.SUPERTOPHER_PAT }} \ - ${{ secrets.DAVINCHIA_PAT }} - name: Get PR repo and ref id: getref run: | diff --git a/.github/workflows/connector_integration_tests.yml b/.github/workflows/connector_integration_tests.yml index 3c7c6c621125..083dfa55534e 100644 --- a/.github/workflows/connector_integration_tests.yml +++ b/.github/workflows/connector_integration_tests.yml @@ -28,7 +28,7 @@ jobs: - name: Launch Integration Tests run: python ./tools/bin/ci_integration_workflow_launcher.py base-normalization source-acceptance-test source:beta source:GA destination:beta destination:GA env: - GITHUB_TOKEN: ${{ secrets.SLASH_COMMAND_PAT }} + GITHUB_TOKEN: ${{ secrets.GH_PAT_MAINTENANCE_OSS }} launch_integration_tests_alpha_only: runs-on: ubuntu-latest if: github.ref == 'refs/heads/master' @@ -47,4 +47,4 @@ jobs: - name: Launch Integration Tests (Alpha connectors) run: python ./tools/bin/ci_integration_workflow_launcher.py source:alpha destination:alpha env: - GITHUB_TOKEN: ${{ secrets.SLASH_COMMAND_PAT }} + GITHUB_TOKEN: ${{ secrets.GH_PAT_MAINTENANCE_OSS }} diff --git a/.github/workflows/deploy-oss-catalog.yml b/.github/workflows/deploy-oss-catalog.yml index 26ecbdaaf651..4a00be0635f0 100644 --- a/.github/workflows/deploy-oss-catalog.yml +++ b/.github/workflows/deploy-oss-catalog.yml @@ -36,14 +36,9 @@ jobs: gcs_bucket_name="prod-airbyte-cloud-connector-metadata-service" catalog_path="airbyte-config/init/src/main/resources/seed/oss_catalog.json" gsutil -h "Cache-Control:public, max-age=10" cp "$catalog_path" "gs://$gcs_bucket_name/oss_catalog.json" - - name: Check PAT rate limits - run: | - ./tools/bin/find_non_rate_limited_PAT \ - ${{ secrets.OCTAVIA_4_ROOT_ACCESS }} \ - ${{ secrets.OCTAVIA_PAT }} - name: Trigger Cloud catalog generation uses: peter-evans/repository-dispatch@v2 with: - token: ${{ env.PAT }} + token: ${{ secrets.GH_PAT_MAINTENANCE_OCTAVIA }} repository: airbytehq/airbyte-cloud event-type: generate-cloud-catalog diff --git a/.github/workflows/gke-kube-test-command.yml b/.github/workflows/gke-kube-test-command.yml index 26b4841975d8..ff0ed5ecc210 100644 --- a/.github/workflows/gke-kube-test-command.yml +++ b/.github/workflows/gke-kube-test-command.yml @@ -33,10 +33,8 @@ jobs: - name: Check PAT rate limits run: | ./tools/bin/find_non_rate_limited_PAT \ - ${{ secrets.AIRBYTEIO_PAT }} \ - ${{ secrets.OSS_BUILD_RUNNER_GITHUB_PAT }} \ - ${{ secrets.SUPERTOPHER_PAT }} \ - ${{ secrets.DAVINCHIA_PAT }} + ${{ secrets.GH_PAT_BUILD_RUNNER_OSS }} \ + ${{ secrets.GH_PAT_BUILD_RUNNER_BACKUP }} - name: Start AWS Runner id: start-ec2-runner uses: ./.github/actions/start-aws-runner @@ -152,10 +150,8 @@ jobs: - name: Check PAT rate limits run: | ./tools/bin/find_non_rate_limited_PAT \ - ${{ secrets.AIRBYTEIO_PAT }} \ - ${{ secrets.OSS_BUILD_RUNNER_GITHUB_PAT }} \ - ${{ secrets.SUPERTOPHER_PAT }} \ - ${{ secrets.DAVINCHIA_PAT }} + ${{ secrets.GH_PAT_BUILD_RUNNER_OSS }} \ + ${{ secrets.GH_PAT_BUILD_RUNNER_BACKUP }} - name: Stop EC2 runner uses: supertopher/ec2-github-runner@base64v1.0.10 with: diff --git a/.github/workflows/gradle.yml b/.github/workflows/gradle.yml index 31a52a2adfbf..fae5b20de325 100644 --- a/.github/workflows/gradle.yml +++ b/.github/workflows/gradle.yml @@ -124,7 +124,6 @@ jobs: - uses: actions/setup-python@v4 with: python-version: "3.9" - token: ${{ env.PAT }} - name: Set up CI Gradle Properties run: | @@ -191,10 +190,8 @@ jobs: - name: Check PAT rate limits run: | ./tools/bin/find_non_rate_limited_PAT \ - ${{ secrets.AIRBYTEIO_PAT }} \ - ${{ secrets.OSS_BUILD_RUNNER_GITHUB_PAT }} \ - ${{ secrets.SUPERTOPHER_PAT }} \ - ${{ secrets.DAVINCHIA_PAT }} + ${{ secrets.GH_PAT_BUILD_RUNNER_OSS }} \ + ${{ secrets.GH_PAT_BUILD_RUNNER_BACKUP }} - name: Start AWS Runner id: start-ec2-runner uses: ./.github/actions/start-aws-runner @@ -230,7 +227,6 @@ jobs: - uses: actions/setup-python@v4 with: python-version: "3.9" - token: ${{ env.PAT }} - name: Install Pyenv run: python3 -m pip install virtualenv==16.7.9 --user @@ -345,10 +341,8 @@ jobs: - name: Check PAT rate limits run: | ./tools/bin/find_non_rate_limited_PAT \ - ${{ secrets.AIRBYTEIO_PAT }} \ - ${{ secrets.OSS_BUILD_RUNNER_GITHUB_PAT }} \ - ${{ secrets.SUPERTOPHER_PAT }} \ - ${{ secrets.DAVINCHIA_PAT }} + ${{ secrets.GH_PAT_BUILD_RUNNER_OSS }} \ + ${{ secrets.GH_PAT_BUILD_RUNNER_BACKUP }} - name: Stop EC2 runner uses: supertopher/ec2-github-runner@base64v1.0.10 with: @@ -378,10 +372,8 @@ jobs: - name: Check PAT rate limits run: | ./tools/bin/find_non_rate_limited_PAT \ - ${{ secrets.AIRBYTEIO_PAT }} \ - ${{ secrets.OSS_BUILD_RUNNER_GITHUB_PAT }} \ - ${{ secrets.SUPERTOPHER_PAT }} \ - ${{ secrets.DAVINCHIA_PAT }} + ${{ secrets.GH_PAT_BUILD_RUNNER_OSS }} \ + ${{ secrets.GH_PAT_BUILD_RUNNER_BACKUP }} - name: Start AWS Runner id: start-ec2-runner uses: ./.github/actions/start-aws-runner @@ -414,7 +406,6 @@ jobs: - uses: actions/setup-python@v4 with: python-version: "3.9" - token: ${{ env.PAT }} - name: Set up CI Gradle Properties run: | @@ -469,10 +460,8 @@ jobs: - name: Check PAT rate limits run: | ./tools/bin/find_non_rate_limited_PAT \ - ${{ secrets.AIRBYTEIO_PAT }} \ - ${{ secrets.OSS_BUILD_RUNNER_GITHUB_PAT }} \ - ${{ secrets.SUPERTOPHER_PAT }} \ - ${{ secrets.DAVINCHIA_PAT }} + ${{ secrets.GH_PAT_BUILD_RUNNER_OSS }} \ + ${{ secrets.GH_PAT_BUILD_RUNNER_BACKUP }} - name: Stop EC2 runner uses: supertopher/ec2-github-runner@base64v1.0.10 with: @@ -502,10 +491,8 @@ jobs: - name: Check PAT rate limits run: | ./tools/bin/find_non_rate_limited_PAT \ - ${{ secrets.AIRBYTEIO_PAT }} \ - ${{ secrets.OSS_BUILD_RUNNER_GITHUB_PAT }} \ - ${{ secrets.SUPERTOPHER_PAT }} \ - ${{ secrets.DAVINCHIA_PAT }} + ${{ secrets.GH_PAT_BUILD_RUNNER_OSS }} \ + ${{ secrets.GH_PAT_BUILD_RUNNER_BACKUP }} - name: Start AWS Runner id: start-ec2-runner uses: ./.github/actions/start-aws-runner @@ -538,7 +525,6 @@ jobs: - uses: actions/setup-python@v4 with: python-version: "3.9" - token: ${{ env.PAT }} - name: Delete default old docker and replace it with a new one shell: bash @@ -602,10 +588,8 @@ jobs: - name: Check PAT rate limits run: | ./tools/bin/find_non_rate_limited_PAT \ - ${{ secrets.AIRBYTEIO_PAT }} \ - ${{ secrets.OSS_BUILD_RUNNER_GITHUB_PAT }} \ - ${{ secrets.SUPERTOPHER_PAT }} \ - ${{ secrets.DAVINCHIA_PAT }} + ${{ secrets.GH_PAT_BUILD_RUNNER_OSS }} \ + ${{ secrets.GH_PAT_BUILD_RUNNER_BACKUP }} - name: Stop EC2 runner uses: supertopher/ec2-github-runner@base64v1.0.10 with: @@ -635,10 +619,8 @@ jobs: - name: Check PAT rate limits run: | ./tools/bin/find_non_rate_limited_PAT \ - ${{ secrets.AIRBYTEIO_PAT }} \ - ${{ secrets.OSS_BUILD_RUNNER_GITHUB_PAT }} \ - ${{ secrets.SUPERTOPHER_PAT }} \ - ${{ secrets.DAVINCHIA_PAT }} + ${{ secrets.GH_PAT_BUILD_RUNNER_OSS }} \ + ${{ secrets.GH_PAT_BUILD_RUNNER_BACKUP }} - name: Start AWS Runner id: start-ec2-runner uses: ./.github/actions/start-aws-runner @@ -670,7 +652,6 @@ jobs: - uses: actions/setup-python@v4 with: python-version: "3.9" - token: ${{ env.PAT }} - uses: actions/setup-node@v3 with: @@ -805,7 +786,6 @@ jobs: if: always() with: python-version: "3.9" - token: ${{ env.PAT }} - name: Publish Platform Test Results uses: EnricoMi/publish-unit-test-result-action@v2 @@ -881,10 +861,8 @@ jobs: - name: Check PAT rate limits run: | ./tools/bin/find_non_rate_limited_PAT \ - ${{ secrets.AIRBYTEIO_PAT }} \ - ${{ secrets.OSS_BUILD_RUNNER_GITHUB_PAT }} \ - ${{ secrets.SUPERTOPHER_PAT }} \ - ${{ secrets.DAVINCHIA_PAT }} + ${{ secrets.GH_PAT_BUILD_RUNNER_OSS }} \ + ${{ secrets.GH_PAT_BUILD_RUNNER_BACKUP }} - name: Stop EC2 runner uses: supertopher/ec2-github-runner@base64v1.0.10 with: @@ -913,10 +891,8 @@ jobs: - name: Check PAT rate limits run: | ./tools/bin/find_non_rate_limited_PAT \ - ${{ secrets.AIRBYTEIO_PAT }} \ - ${{ secrets.OSS_BUILD_RUNNER_GITHUB_PAT }} \ - ${{ secrets.SUPERTOPHER_PAT }} \ - ${{ secrets.DAVINCHIA_PAT }} + ${{ secrets.GH_PAT_BUILD_RUNNER_OSS }} \ + ${{ secrets.GH_PAT_BUILD_RUNNER_BACKUP }} - name: Start AWS Runner id: start-ec2-runner uses: ./.github/actions/start-aws-runner @@ -951,7 +927,6 @@ jobs: - uses: actions/setup-python@v4 with: python-version: "3.9" - token: ${{ env.PAT }} - name: Install unzip shell: bash @@ -1028,7 +1003,6 @@ jobs: if: always() with: python-version: "3.9" - token: ${{ env.PAT }} - name: Publish Kube Test Results id: kube-results @@ -1109,10 +1083,8 @@ jobs: - name: Check PAT rate limits run: | ./tools/bin/find_non_rate_limited_PAT \ - ${{ secrets.AIRBYTEIO_PAT }} \ - ${{ secrets.OSS_BUILD_RUNNER_GITHUB_PAT }} \ - ${{ secrets.SUPERTOPHER_PAT }} \ - ${{ secrets.DAVINCHIA_PAT }} + ${{ secrets.GH_PAT_BUILD_RUNNER_OSS }} \ + ${{ secrets.GH_PAT_BUILD_RUNNER_BACKUP }} - name: Stop EC2 runner uses: supertopher/ec2-github-runner@base64v1.0.10 with: @@ -1141,10 +1113,8 @@ jobs: - name: Check PAT rate limits run: | ./tools/bin/find_non_rate_limited_PAT \ - ${{ secrets.AIRBYTEIO_PAT }} \ - ${{ secrets.OSS_BUILD_RUNNER_GITHUB_PAT }} \ - ${{ secrets.SUPERTOPHER_PAT }} \ - ${{ secrets.DAVINCHIA_PAT }} + ${{ secrets.GH_PAT_BUILD_RUNNER_OSS }} \ + ${{ secrets.GH_PAT_BUILD_RUNNER_BACKUP }} - name: Start AWS Runner id: start-ec2-runner uses: ./.github/actions/start-aws-runner @@ -1199,7 +1169,6 @@ jobs: - uses: actions/setup-python@v4 with: python-version: "3.9" - token: ${{ env.PAT }} - uses: actions/setup-java@v1 with: @@ -1344,10 +1313,8 @@ jobs: - name: Check PAT rate limits run: | ./tools/bin/find_non_rate_limited_PAT \ - ${{ secrets.AIRBYTEIO_PAT }} \ - ${{ secrets.OSS_BUILD_RUNNER_GITHUB_PAT }} \ - ${{ secrets.SUPERTOPHER_PAT }} \ - ${{ secrets.DAVINCHIA_PAT }} + ${{ secrets.GH_PAT_BUILD_RUNNER_OSS }} \ + ${{ secrets.GH_PAT_BUILD_RUNNER_BACKUP }} - name: Stop EC2 runner uses: supertopher/ec2-github-runner@base64v1.0.10 with: diff --git a/.github/workflows/label-github-issues-by-context.yml b/.github/workflows/label-github-issues-by-context.yml index af782b773964..4d9eac59a7a4 100644 --- a/.github/workflows/label-github-issues-by-context.yml +++ b/.github/workflows/label-github-issues-by-context.yml @@ -8,20 +8,12 @@ jobs: name: "Add Labels to Issues. Safe to Merge on fail" runs-on: ubuntu-latest steps: - - name: Checkout Airbyte Repo for PAT command - uses: actions/checkout@v3 - - name: Check PAT rate limits - # Cannot share PAT outside of JOB context - run: | - ./tools/bin/find_non_rate_limited_PAT \ - ${{ secrets.OCTAVIA_4_ROOT_ACCESS }} \ - ${{ secrets.OCTAVIA_PAT }} - name: Run Issue Command from workflow-actions uses: nick-fields/private-action-loader@v3 with: - pal-repo-token: "${{ env.PAT }}" + pal-repo-token: "${{ secrets.GH_PAT_MAINTENANCE_OCTAVIA }}" pal-repo-name: airbytehq/workflow-actions@production # the following input gets passed to the private - token: "${{ env.PAT }}" + token: "${{ secrets.GH_PAT_MAINTENANCE_OCTAVIA }}" # ref: https://github.com/airbytehq/workflow-actions/blob/main/src/bin_issue.ts command: "issue" diff --git a/.github/workflows/label-github-issues-by-path.yml b/.github/workflows/label-github-issues-by-path.yml index 8596a12c3393..1b18f9ec5512 100644 --- a/.github/workflows/label-github-issues-by-path.yml +++ b/.github/workflows/label-github-issues-by-path.yml @@ -10,16 +10,8 @@ jobs: name: "Label PRs based on files changes" runs-on: ubuntu-latest steps: - - name: Checkout Airbyte Repo for PAT command - uses: actions/checkout@v2 - - name: Check PAT rate limits - # Cannot share PAT outside of JOB context - run: | - ./tools/bin/find_non_rate_limited_PAT \ - ${{ secrets.OCTAVIA_4_ROOT_ACCESS }} \ - ${{ secrets.OCTAVIA_PAT }} - name: "Label PR based on changed files" uses: actions/labeler@v3 with: - repo-token: "${{ env.PAT }}" + repo-token: "${{ secrets.GH_PAT_MAINTENANCE_OCTAVIA }}" sync-labels: true diff --git a/.github/workflows/label-prs-by-context.yml b/.github/workflows/label-prs-by-context.yml index b78bff4124dc..f66d6279f58b 100644 --- a/.github/workflows/label-prs-by-context.yml +++ b/.github/workflows/label-prs-by-context.yml @@ -10,19 +10,11 @@ jobs: name: "Add Labels to PRs. Safe to Merge on fail" runs-on: ubuntu-latest steps: - - name: Checkout Airbyte Repo for PAT command - uses: actions/checkout@v3 - - name: Check PAT rate limits - # Cannot share PAT outside of JOB context - run: | - ./tools/bin/find_non_rate_limited_PAT \ - ${{ secrets.OCTAVIA_4_ROOT_ACCESS }} \ - ${{ secrets.OCTAVIA_PAT }} - name: Run Issue Command from workflow-actions uses: nick-fields/private-action-loader@v3 with: - pal-repo-token: "${{ env.PAT }}" + pal-repo-token: "${{ GH_PAT_MAINTENANCE_OCTAVIA }}" pal-repo-name: airbytehq/workflow-actions@production # the following input gets passed to the private action - token: "${{ env.PAT }}" + token: "${{ GH_PAT_MAINTENANCE_OCTAVIA }}" command: "pull" diff --git a/.github/workflows/notify-on-push-to-master.yml b/.github/workflows/notify-on-push-to-master.yml index 040bf4ccb673..be9c526fbecf 100644 --- a/.github/workflows/notify-on-push-to-master.yml +++ b/.github/workflows/notify-on-push-to-master.yml @@ -10,18 +10,10 @@ jobs: name: "Fire a Repo Dispatch event to airbyte-cloud" runs-on: ubuntu-latest steps: - - name: Checkout Airbyte Repo for PAT command - uses: actions/checkout@v3 - - name: Check PAT rate limits - # Cannot share PAT outside of JOB context - run: | - ./tools/bin/find_non_rate_limited_PAT \ - ${{ secrets.OCTAVIA_4_ROOT_ACCESS }} \ - ${{ secrets.OCTAVIA_PAT }} - name: Repository Dispatch uses: peter-evans/repository-dispatch@v2 with: - token: ${{ env.PAT }} + token: ${{ GH_PAT_MAINTENANCE_OCTAVIA }} repository: airbytehq/airbyte-cloud event-type: oss-push-to-master client-payload: '{"ref": "${{ github.ref }}", "sha": "${{ github.sha }}"}' diff --git a/.github/workflows/publish-cdk-command-manually.yml b/.github/workflows/publish-cdk-command-manually.yml index ef3db19ed566..e594b3668da7 100644 --- a/.github/workflows/publish-cdk-command-manually.yml +++ b/.github/workflows/publish-cdk-command-manually.yml @@ -43,7 +43,7 @@ jobs: with: repository: ${{ github.event.inputs.repo }} ref: ${{ github.event.inputs.gitref }} - token: ${{ secrets.AIRBYTEIO_PAT }} + token: ${{ secrets.GH_PAT_MAINTENANCE_OSS }} - name: "Publish Airbyte CDK: bump version" run: | pip install bumpversion diff --git a/.github/workflows/publish-command.yml b/.github/workflows/publish-command.yml index 89677481489d..d0fddf5a3324 100644 --- a/.github/workflows/publish-command.yml +++ b/.github/workflows/publish-command.yml @@ -47,10 +47,8 @@ jobs: - name: Check PAT rate limits run: | ./tools/bin/find_non_rate_limited_PAT \ - ${{ secrets.AIRBYTEIO_PAT }} \ - ${{ secrets.OSS_BUILD_RUNNER_GITHUB_PAT }} \ - ${{ secrets.SUPERTOPHER_PAT }} \ - ${{ secrets.DAVINCHIA_PAT }} + ${{ secrets.GH_PAT_BUILD_RUNNER_OSS }} \ + ${{ secrets.GH_PAT_BUILD_RUNNER_BACKUP }} - name: Start AWS Runner id: start-ec2-runner uses: ./.github/actions/start-aws-runner @@ -75,10 +73,8 @@ jobs: - name: Check PAT rate limits run: | ./tools/bin/find_non_rate_limited_PAT \ - ${{ secrets.AIRBYTEIO_PAT }} \ - ${{ secrets.OSS_BUILD_RUNNER_GITHUB_PAT }} \ - ${{ secrets.SUPERTOPHER_PAT }} \ - ${{ secrets.DAVINCHIA_PAT }} + ${{ secrets.GH_PAT_BUILD_RUNNER_OSS }} \ + ${{ secrets.GH_PAT_BUILD_RUNNER_BACKUP }} - name: Start AWS Runner id: start-ec2-runner uses: ./.github/actions/start-aws-runner @@ -103,10 +99,8 @@ jobs: - name: Check PAT rate limits run: | ./tools/bin/find_non_rate_limited_PAT \ - ${{ secrets.AIRBYTEIO_PAT }} \ - ${{ secrets.OSS_BUILD_RUNNER_GITHUB_PAT }} \ - ${{ secrets.SUPERTOPHER_PAT }} \ - ${{ secrets.DAVINCHIA_PAT }} + ${{ secrets.GH_PAT_BUILD_RUNNER_OSS }} \ + ${{ secrets.GH_PAT_BUILD_RUNNER_BACKUP }} - name: Start AWS Runner id: start-ec2-runner uses: ./.github/actions/start-aws-runner @@ -131,10 +125,8 @@ jobs: - name: Check PAT rate limits run: | ./tools/bin/find_non_rate_limited_PAT \ - ${{ secrets.AIRBYTEIO_PAT }} \ - ${{ secrets.OSS_BUILD_RUNNER_GITHUB_PAT }} \ - ${{ secrets.SUPERTOPHER_PAT }} \ - ${{ secrets.DAVINCHIA_PAT }} + ${{ secrets.GH_PAT_BUILD_RUNNER_OSS }} \ + ${{ secrets.GH_PAT_BUILD_RUNNER_BACKUP }} - name: Start AWS Runner id: start-ec2-runner uses: ./.github/actions/start-aws-runner @@ -159,10 +151,8 @@ jobs: - name: Check PAT rate limits run: | ./tools/bin/find_non_rate_limited_PAT \ - ${{ secrets.AIRBYTEIO_PAT }} \ - ${{ secrets.OSS_BUILD_RUNNER_GITHUB_PAT }} \ - ${{ secrets.SUPERTOPHER_PAT }} \ - ${{ secrets.DAVINCHIA_PAT }} + ${{ secrets.GH_PAT_BUILD_RUNNER_OSS }} \ + ${{ secrets.GH_PAT_BUILD_RUNNER_BACKUP }} - name: Start AWS Runner id: start-ec2-runner uses: ./.github/actions/start-aws-runner @@ -250,7 +240,7 @@ jobs: with: repository: ${{ github.event.inputs.repo }} ref: ${{ github.event.inputs.gitref }} - token: ${{ secrets.OCTAVIA_PAT }} + token: ${{ secrets.GH_PAT_MAINTENANCE_OSS }} - name: Install Java uses: actions/setup-java@v3 with: @@ -440,10 +430,8 @@ jobs: - name: Check PAT rate limits run: | ./tools/bin/find_non_rate_limited_PAT \ - ${{ secrets.AIRBYTEIO_PAT }} \ - ${{ secrets.OSS_BUILD_RUNNER_GITHUB_PAT }} \ - ${{ secrets.SUPERTOPHER_PAT }} \ - ${{ secrets.DAVINCHIA_PAT }} + ${{ secrets.GH_PAT_BUILD_RUNNER_OSS }} \ + ${{ secrets.GH_PAT_BUILD_RUNNER_BACKUP }} - name: Stop EC2 runner uses: airbytehq/ec2-github-runner@base64v1.1.0 with: @@ -497,10 +485,8 @@ jobs: - name: Check PAT rate limits run: | ./tools/bin/find_non_rate_limited_PAT \ - ${{ secrets.AIRBYTEIO_PAT }} \ - ${{ secrets.OSS_BUILD_RUNNER_GITHUB_PAT }} \ - ${{ secrets.SUPERTOPHER_PAT }} \ - ${{ secrets.DAVINCHIA_PAT }} + ${{ secrets.GH_PAT_BUILD_RUNNER_OSS }} \ + ${{ secrets.GH_PAT_BUILD_RUNNER_BACKUP }} - name: Stop EC2 runner uses: airbytehq/ec2-github-runner@base64v1.1.0 with: diff --git a/.github/workflows/publish-connector-command.yml b/.github/workflows/publish-connector-command.yml index 3fcc2daef8f0..d38b11d91485 100644 --- a/.github/workflows/publish-connector-command.yml +++ b/.github/workflows/publish-connector-command.yml @@ -44,10 +44,8 @@ jobs: # - name: Check PAT rate limits # run: | # ./tools/bin/find_non_rate_limited_PAT \ -# ${{ secrets.AIRBYTEIO_PAT }} \ -# ${{ secrets.OSS_BUILD_RUNNER_GITHUB_PAT }} \ -# ${{ secrets.SUPERTOPHER_PAT }} \ -# ${{ secrets.DAVINCHIA_PAT }} +# ${{ secrets.GH_PAT_BUILD_RUNNER_OSS }} \ +# ${{ secrets.GH_PAT_BUILD_RUNNER_BACKUP }} # - name: Start AWS Runner # id: start-ec2-runner # uses: ./.github/actions/start-aws-runner @@ -92,7 +90,7 @@ jobs: # with: # repository: ${{ github.event.inputs.repo }} # ref: ${{ github.event.inputs.gitref }} -# token: ${{ secrets.OCTAVIA_PAT }} +# token: ${{ secrets.GH_PAT_MAINTENANCE_OSS }} # - name: Install Java # uses: actions/setup-java@v3 # with: @@ -195,10 +193,8 @@ jobs: # - name: Check PAT rate limits # run: | # ./tools/bin/find_non_rate_limited_PAT \ -# ${{ secrets.AIRBYTEIO_PAT }} \ -# ${{ secrets.OSS_BUILD_RUNNER_GITHUB_PAT }} \ -# ${{ secrets.SUPERTOPHER_PAT }} \ -# ${{ secrets.DAVINCHIA_PAT }} +# ${{ secrets.GH_PAT_BUILD_RUNNER_OSS }} \ +# ${{ secrets.GH_PAT_BUILD_RUNNER_BACKUP }} # - name: Stop EC2 runner # uses: supertopher/ec2-github-runner@base64v1.0.10 # with: diff --git a/.github/workflows/publish-helm-charts.yml b/.github/workflows/publish-helm-charts.yml index 3ad583619da3..7966fb5ebf06 100644 --- a/.github/workflows/publish-helm-charts.yml +++ b/.github/workflows/publish-helm-charts.yml @@ -57,7 +57,7 @@ jobs: - uses: actions/checkout@v3 with: repository: "airbytehq/helm-charts" - token: ${{ secrets.OCTAVIA_PAT }} + token: ${{ secrets.GH_PAT_MAINTENANCE_CLOUD }} path: "airbyte-oss" - name: Replace semantic version in main chart for deps diff --git a/.github/workflows/publish-oss-for-cloud.yml b/.github/workflows/publish-oss-for-cloud.yml index 6c8b13a0650a..ff14a7f9b139 100644 --- a/.github/workflows/publish-oss-for-cloud.yml +++ b/.github/workflows/publish-oss-for-cloud.yml @@ -25,10 +25,8 @@ jobs: - name: Check PAT rate limits run: | ./tools/bin/find_non_rate_limited_PAT \ - ${{ secrets.AIRBYTEIO_PAT }} \ - ${{ secrets.OSS_BUILD_RUNNER_GITHUB_PAT }} \ - ${{ secrets.SUPERTOPHER_PAT }} \ - ${{ secrets.DAVINCHIA_PAT }} + ${{ secrets.OSS_BUILD_RUNNER_GITHUB_PAT}} \ + ${{ secrets.BACKUP_BUILD_RUNNER_GITHUB_PAT }} - name: Start AWS Runner id: start-ec2-runner uses: ./.github/actions/start-aws-runner @@ -181,10 +179,8 @@ jobs: - name: Check PAT rate limits run: | ./tools/bin/find_non_rate_limited_PAT \ - ${{ secrets.AIRBYTEIO_PAT }} \ - ${{ secrets.OSS_BUILD_RUNNER_GITHUB_PAT }} \ - ${{ secrets.SUPERTOPHER_PAT }} \ - ${{ secrets.DAVINCHIA_PAT }} + ${{ secrets.OSS_BUILD_RUNNER_GITHUB_PAT}} \ + ${{ secrets.BACKUP_BUILD_RUNNER_GITHUB_PAT }} - name: Stop EC2 runner uses: airbytehq/ec2-github-runner@base64v1.1.0 with: diff --git a/.github/workflows/release-airbyte-os.yml b/.github/workflows/release-airbyte-os.yml index ab10b48b3742..461b87cb41cc 100644 --- a/.github/workflows/release-airbyte-os.yml +++ b/.github/workflows/release-airbyte-os.yml @@ -23,10 +23,8 @@ jobs: - name: Check PAT rate limits run: | ./tools/bin/find_non_rate_limited_PAT \ - ${{ secrets.AIRBYTEIO_PAT }} \ - ${{ secrets.OSS_BUILD_RUNNER_GITHUB_PAT }} \ - ${{ secrets.SUPERTOPHER_PAT }} \ - ${{ secrets.DAVINCHIA_PAT }} + ${{ secrets.GH_PAT_BUILD_RUNNER_OSS }} \ + ${{ secrets.GH_PAT_BUILD_RUNNER_BACKUP }} - name: Start AWS Runner id: start-ec2-runner uses: ./.github/actions/start-aws-runner @@ -131,7 +129,7 @@ jobs: id: cpr uses: peter-evans/create-pull-request@v3 with: - token: ${{ secrets.SLASH_COMMAND_PAT }} + token: ${{ secrets.GH_PAT_MAINTENANCE_OCTAVIA }} branch: bump-version branch-suffix: random delete-branch: true @@ -164,10 +162,8 @@ jobs: - name: Check PAT rate limits run: | ./tools/bin/find_non_rate_limited_PAT \ - ${{ secrets.AIRBYTEIO_PAT }} \ - ${{ secrets.OSS_BUILD_RUNNER_GITHUB_PAT }} \ - ${{ secrets.SUPERTOPHER_PAT }} \ - ${{ secrets.DAVINCHIA_PAT }} + ${{ secrets.GH_PAT_BUILD_RUNNER_OSS }} \ + ${{ secrets.GH_PAT_BUILD_RUNNER_BACKUP }} - name: Stop EC2 runner uses: supertopher/ec2-github-runner@base64v1.0.10 with: diff --git a/.github/workflows/slash-commands.yml b/.github/workflows/slash-commands.yml index 866f6c4e11ff..a3223017bc32 100644 --- a/.github/workflows/slash-commands.yml +++ b/.github/workflows/slash-commands.yml @@ -8,17 +8,6 @@ jobs: if: ${{ github.event.issue.pull_request }} runs-on: ubuntu-latest steps: - - name: Checkout Airbyte - uses: actions/checkout@v3 - - - name: Check PAT rate limits - run: | - ./tools/bin/find_non_rate_limited_PAT \ - ${{ secrets.AIRBYTEIO_PAT }} \ - ${{ secrets.OSS_BUILD_RUNNER_GITHUB_PAT }} \ - ${{ secrets.SUPERTOPHER_PAT }} \ - ${{ secrets.DAVINCHIA_PAT }} - - name: Get PR repo and ref id: getref run: | @@ -30,7 +19,7 @@ jobs: id: scd uses: peter-evans/slash-command-dispatch@v2 with: - token: ${{ env.PAT }} + token: ${{ secrets.GH_PAT_MAINTENANCE_OCTAVIA }} commands: | test test-performance diff --git a/.github/workflows/terminate-zombie-build-instances.yml b/.github/workflows/terminate-zombie-build-instances.yml index 40cd8e782cbf..a18894a79d6b 100644 --- a/.github/workflows/terminate-zombie-build-instances.yml +++ b/.github/workflows/terminate-zombie-build-instances.yml @@ -44,5 +44,5 @@ jobs: uses: actions/checkout@v3 - name: List and Terminate GH actions in status 'offline' env: - GITHUB_PAT: ${{ secrets.OCTAVIA_PAT }} + GITHUB_PAT: ${{ secrets.GH_PAT_MAINTENANCE_OCTAVIA }} run: ./tools/bin/gh_action_zombie_killer diff --git a/.github/workflows/test-command.yml b/.github/workflows/test-command.yml index 08a7250fc694..11f2214d9b83 100644 --- a/.github/workflows/test-command.yml +++ b/.github/workflows/test-command.yml @@ -25,8 +25,6 @@ jobs: name: "Custom UUID of workflow run" timeout-minutes: 10 runs-on: ubuntu-latest - outputs: - pat: ${{ steps.variables.outputs.pat }} steps: - name: UUID ${{ github.event.inputs.uuid }} run: true @@ -47,10 +45,8 @@ jobs: - name: Check PAT rate limits run: | ./tools/bin/find_non_rate_limited_PAT \ - ${{ secrets.AIRBYTEIO_PAT }} \ - ${{ secrets.OSS_BUILD_RUNNER_GITHUB_PAT }} \ - ${{ secrets.SUPERTOPHER_PAT }} \ - ${{ secrets.DAVINCHIA_PAT }} + ${{ secrets.GH_PAT_BUILD_RUNNER_OSS }} \ + ${{ secrets.GH_PAT_BUILD_RUNNER_BACKUP }} - name: Start AWS Runner id: start-ec2-runner uses: ./.github/actions/start-aws-runner @@ -206,10 +202,8 @@ jobs: - name: Check PAT rate limits run: | ./tools/bin/find_non_rate_limited_PAT \ - ${{ secrets.AIRBYTEIO_PAT }} \ - ${{ secrets.OSS_BUILD_RUNNER_GITHUB_PAT }} \ - ${{ secrets.SUPERTOPHER_PAT }} \ - ${{ secrets.DAVINCHIA_PAT }} + ${{ secrets.GH_PAT_BUILD_RUNNER_OSS }} \ + ${{ secrets.GH_PAT_BUILD_RUNNER_BACKUP }} - name: Stop EC2 runner uses: supertopher/ec2-github-runner@base64v1.0.10 with: diff --git a/.github/workflows/test-performance-command.yml b/.github/workflows/test-performance-command.yml index 3ab4467e6b48..b8c1a040d370 100644 --- a/.github/workflows/test-performance-command.yml +++ b/.github/workflows/test-performance-command.yml @@ -42,10 +42,8 @@ jobs: - name: Check PAT rate limits run: | ./tools/bin/find_non_rate_limited_PAT \ - ${{ secrets.AIRBYTEIO_PAT }} \ - ${{ secrets.OSS_BUILD_RUNNER_GITHUB_PAT }} \ - ${{ secrets.SUPERTOPHER_PAT }} \ - ${{ secrets.DAVINCHIA_PAT }} + ${{ secrets.GH_PAT_BUILD_RUNNER_OSS }} \ + ${{ secrets.GH_PAT_BUILD_RUNNER_BACKUP }} - name: Start AWS Runner id: start-ec2-runner uses: ./.github/actions/start-aws-runner @@ -202,10 +200,8 @@ jobs: - name: Check PAT rate limits run: | ./tools/bin/find_non_rate_limited_PAT \ - ${{ secrets.AIRBYTEIO_PAT }} \ - ${{ secrets.OSS_BUILD_RUNNER_GITHUB_PAT }} \ - ${{ secrets.SUPERTOPHER_PAT }} \ - ${{ secrets.DAVINCHIA_PAT }} + ${{ secrets.GH_PAT_BUILD_RUNNER_OSS }} \ + ${{ secrets.GH_PAT_BUILD_RUNNER_BACKUP }} - name: Stop EC2 runner uses: supertopher/ec2-github-runner@base64v1.0.10 with: