chore(deps): update dependency taskcluster-client to v61

[renovate]

This PR contains the following updates:

Package	Change	Age	Adoption	Passing	Confidence
taskcluster-client (source)	60.0.0 -> 61.0.0

---

Release Notes

taskcluster/taskcluster (taskcluster-client)

v61.0.0

Compare Source

GENERAL

▶ [patch]
Generic Worker now utilizes filepath.WalkDir instead of filepath.Walk.

filepath.WalkDir was introduced in go1.16 and is more performant and efficient over filepath.Walk.

This may help with race conditions during artifact uploads, where a file was initially seen, but then became unavailable at upload time.

▶ [patch]
Upgrades to go1.22.1 which is a security release.

USERS

▶ [MAJOR] #​6881
Google cloud workers spawned by Worker Manager now have workerGroup set to
the Google Cloud Zone (e.g. us-east1-d) rather than the Google Cloud
Region (e.g. us-east1). This makes it easier to issue api requests against
an instance, e.g. gcloud compute instances delete <workerId> --zone=<workerGroup>.

▶ [patch] #​6890
D2G now always passes --privileged to the generated podman run command.
Without this option, some tasks that ran successfully under Docker Worker,
including tasks without Docker Worker capabilities, would not run correctly
under Generic Worker. Please note, this only elevates the privileges inside the
podman container, which runs as the task user on the host. The privileges
inside the container are still limited to the host privileges of the task user.

▶ [patch]
Generic Worker now correctly reports the Worker Pool ID when an interactive task is attempted on a worker pool with the interactive feature disabled. Previously the task log would report the Worker Pool ID in the exception/malformed-payload task run as <workerGroup>/<workerType>; now it correctly reports it as <provisionerId>/<workerType>. The Interactive feature is considered disabled when Generic Worker config setting enableInteractive is either absent or explicitly set to false in the Generic Worker config.

DEVELOPERS

▶ [patch]
Upgrades internal references library to use async fs operations to make upcoming node20 upgrade easier.

Automated Package Updates

7 Dependabot updates

• build(deps): bump jose from 2.0.6 to 2.0.7 (f2bd071)
• build(deps): bump the deps group in /ui with 6 updates (ac2bb66)
• build(deps-dev): bump the deps group in /clients/client with 2 updates (36fac2a)
• build(deps): bump taskcluster-client-web from 44.21.0 to 60.4.2 in /ui (7b79a3e)
• build(deps): bump the deps group with 6 updates (ee709aa)
• build(deps): bump the deps group in /taskcluster with 2 updates (c02ca54)
• build(deps): bump the deps group with 25 updates (0cd5033)

v60.4.2

Compare Source

USERS

▶ [patch]
Fixes graphql validation rules for hooks groups query.

▶ [patch] #​6864
D2G now passes --privileged flag to the generated podman run command when
Docker Worker payload enables device capability hostSharedMemory. Without
this option, the podman container could not successfully access the shared
memory, despite the inclusion of argument --device=/dev/shm. With both
arguments present (--privileged and --device=/dev/shm), shared memory now
appears to be available inside the podman container.

Automated Package Updates

3 Dependabot updates

• build(deps): bump mitt from 2.1.0 to 3.0.1 in /ui (280678f)
• build(deps): bump ip from 2.0.0 to 2.0.1 in /clients/client-web (be7836a)
• build(deps): bump markdown-it-link-attributes from 3.0.0 to 4.0.1 in /ui (008b3fe)

v60.4.1

Compare Source

USERS

▶ [patch]
Fix docker worker interactive shell UI rows/cols settings.

▶ [patch] #​6836
Upgrades graphql server and client libraries to graphql 16.8

▶ [patch] #​6836
Upgrades graphql to 16.8.1 in ui

Automated Package Updates

1 Dependabot updates

• build(deps): bump es5-ext from 0.10.62 to 0.10.64 (485a491)

v60.4.0

Compare Source

USERS

▶ [minor] #​6845
D2G now provides support for the (discontinued) disableSeccomp capability which was removed from Docker Worker, but was still used by the bugmon fuzzing project in the Community taskcluster environment. This was added to ease the migration path of this project from Docker Worker to Generic Worker.

▶ [patch] #​6848
Fix an issue where an interactive session would close up when the shell would output invalid UTF-8.

▶ [patch] #​6850
Add a proper TERM environment variable to interative sessions. This helps with some ncurses apps and tmux for example.

OTHER

▶ Additional change not described here: #​6852.

Automated Package Updates

4 Dependabot updates

• build(deps): bump ip from 2.0.0 to 2.0.1 (34cb19d)
• build(deps): bump ip from 1.1.5 to 1.1.9 in /ui (98d1c2c)
• build(deps): bump ip from 2.0.0 to 2.0.1 in /clients/client-test (360fdb2)
• build(deps): bump ip from 2.0.0 to 2.0.1 in /clients/client (19094b0)

v60.3.5

Compare Source

GENERAL

▶ [patch]
Switched to use math/rand/v2 (new in go1.22), removed deprecated call to windows.OpenCurrentProcessToken(), fixed staticcheck errors, and added a staticcheck GitHub actions workflow for our repo.

▶ [patch]
Upgrades to node v18.19.1, which is a security release.

DEPLOYERS

▶ [patch]
Kubernetes lifecycle timeouts correctly set to avoid having 502s.

USERS

▶ [patch] #​6795
Fixes "Raw Log" button in UI that can point to an expired artifact.

v60.3.4

Compare Source

GENERAL

▶ [patch]
Upgrades to go1.22.0

USERS

▶ [patch] #​6820
Fixes scope view in the UI. Search by scope shows roles and clients that use given scope.

Automated Package Updates

1 Dependabot updates

• build(deps): bump the deps group with 1 update (ecf9462)

v60.3.3

Compare Source

DEVELOPERS

▶ [patch]
Upgrades to yarn v4.1.0

Automated Package Updates

5 Dependabot updates

• build(deps-dev): bump the deps group in /ui with 3 updates (319f484)
• build(deps): bump taskcluster from 59.2.0 to 60.3.2 in /taskcluster (cde9bb3)
• build(deps): bump the deps group in /taskcluster with 1 update (35e1bf6)
• build(deps): bump the deps group with 4 updates (87b4265)
• build(deps-dev): bump the deps group in /clients/client with 1 update (8944d36)

v60.3.2

Compare Source

WORKER-DEPLOYERS

▶ [patch]
Worker Runner now checks for termination notice when starting the Google provider.

When Worker Runner runs, the instance may already be scheduled to be shutdown. So on Google provider startup, we now check for this case.

This functionality mimics what's already in place for AWS.

This change also decreases the time Worker Runner checks to see if the instance is scheduled to be shutdown from 30 seconds to 15 seconds on the Google and Azure providers, as they each have a 30 second notice before a hard-shutdown Google: https://cloud.google.com/compute/docs/instances/spot#preemption-process Azure: https://learn.microsoft.com/en-us/azure/virtual-machines/spot-vms.

USERS

▶ [patch] #​6801
Fixes a bug in notify service where multiple messages to the same channel were not sent.
Adds 204 status code to the email, matrix, pulse, slack endoints when message was detected to be duplicate and was not sent.

▶ [patch] #​6793
D2G will now ensure that tasks whose max run time is exceeded still have the chance to publish artifacts.
This means that Docker Worker tasks definitions that are run under Generic Worker and are aborted due to
hitting the max run time should still publish the artifacts from the aborted docker container they ran in.

▶ [patch] #​6798
Generic Worker now includes the original Docker Worker task definition in the chain of trust certificate, if the task payload is a Docker Worker task payload. Previously, it was including the internal Generic Worker representation of the task definition.

▶ [patch]
The Task Creator now defaults to a task that only takes 1 minute to run instead of 10 mins, to redue resource consumption. Tutorials updated to reflect change.

Automated Package Updates

1 Dependabot updates

• build(deps): bump aiohttp from 3.9.0 to 3.9.2 in /taskcluster (c7f9d92)

v60.3.1

Compare Source

USERS

▶ [patch] #​6789
Generic Worker no longer modifies task scopes passed to Taskcluster Proxy.
Previously there was a bug where Taskcluster Proxy would be passed the
d2g-modified scopes by Generic Worker rather than the original task scopes from
the task definition of the queue.claimWork response body. If the task was not
also explicitly assigned the required generic-worker scopes, this would result
in HTTP 401 errors from Taskcluster Proxy calls.

This has now been fixed, so that it is sufficient for tasks with a Docker
Worker payload to contain only Docker Worker scopes, not have the associated
generic-worker scopes, yet still work under Generic Worker and use the
Taskcluster Proxy feature without causing HTTP 401 errors.

v60.3.0

Compare Source

GENERAL

▶ [patch]
Generic Worker now copies archives to the task user's directory before unarchiving.

WORKER-DEPLOYERS

▶ [minor] #​6785
Generic Worker now exits with exit code 82 if the chain of trust key is missing.

v60.2.0

Compare Source

GENERAL

▶ [patch]
Go upgrade to 1.21.6.

go1.21.6 (released 2024-01-09) includes fixes to the compiler, the runtime, and the crypto/tls, maps, and runtime/pprof packages. See the Go 1.21.6 milestone on our issue tracker for details.

WORKER-DEPLOYERS

▶ [minor]
Generic Worker: adds unarchive subcommand to the generic-worker binary.

USERS

▶ [minor] #​6720
The taskcluster UI now shows errors when an action's input does not match the action.schema

v60.1.3

Compare Source

GENERAL

▶ [patch] #​6235
Migrates to aws sdk v3.

v60.1.2

Compare Source

USERS

▶ [patch] #​6563
Ensure livelog and interactive tasks tunnels work after a websocktunnel restart.

v60.1.0

Compare Source

WORKER-DEPLOYERS

▶ [patch] #​6779
Interactive feature data race fixed, whereby an error could cause a concurrent read and write of process state in different go routines.

USERS

▶ [minor] bug 1874568
Fixes token expiry issue for Auth0 login strategy that was not refetched.

▶ [patch] #​6495
Improve changelog rendering in UI

DEVELOPERS

▶ [patch]
Added helper script to make it easier to run websocktunnel locally.

Automated Package Updates

1 Dependabot updates

• build(deps): bump jinja2 from 3.1.2 to 3.1.3 in /taskcluster (c97cf83)

v60.0.1

Compare Source

GENERAL

▶ [patch] #​6762
Generic Worker: Tasks internally translated by D2G will add exit code 128 to the retry exit status array for retrying on an intermittent docker image pull issue.

Automated Package Updates

5 Dependabot updates

• build(deps): bump follow-redirects from 1.14.8 to 1.15.4 in /ui (d0f8546)
• build(deps): bump follow-redirects in /clients/client (fdf2641)
• build(deps): bump follow-redirects from 1.15.3 to 1.15.4 (77c73c5)
• build(deps): bump follow-redirects in /clients/client-test (1465e06)
• build(deps): bump follow-redirects in /clients/client-web (924ecbb)

---

Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Enabled.

♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

---

• If you want to rebase/retry this PR, check this box

---

This PR has been generated by Mend Renovate. View repository job log here.