Open dduportal opened 2 years ago
Blocked by https://github.com/jenkins-infra/helpdesk/issues/2834 (because of involved credentials)
Status:
Next step:
We're planning to do one per week, with azure
& packer-images
for this one.
Update:
Project jenkins-infra/azure ✅
Project jenkins-infra/packer-images ✅
This issues causes merge problems as all jobs are sending a continuous-integration/jenkins/pr-merge
check (along with the "custom name" we added for the new updatecli jobs.
It means the checks can be all green if the last job to run was green, despite the first one being red.
Example with https://github.com/jenkins-infra/packer-images/pull/1041 where the main (and most important) build fails but updatecli jobs succeeded after the main job failure: PR can be merged as checks are all marked jobs are green:
@lemeurherve I'm not sure how to handle this unwanted behavior. Looks like it is related to Jenkins Multibranch pipeline not supporting multiple pipeline per repositories. Do you think we could generate a custom name for each of our project so we could have an explicit check for "main builds" too?
After a first discussion, we started to look into fully switching to GitHub Status Check system (disabled by default in infra.ci unless explicitly set up, such as the Updatecli distinct jobs).
E.g. Defining up a default GitHub Status Check setup with the controller FDQN as "name", skipping status update and disabling all notifications (such as `continuous-integration/jenkins/pr-merge) emitted by the GitHub Branch Source Plugin. Unless a custom configuration is provided for status check of course.
Changing
to
=> That would be a workable solution for now, involving "only" a major change on the jenkins-jobs
helm chart. Only inconvenience would be the risk on accidentally leaking build log (it is the default for now but can be enabled accidentally through a bad setup).
After another discussion with other contributors, it appears that we missed https://plugins.jenkins.io/github-branch-source/#plugin-content-extension-plugins:
github-scm-trait-notification-context - allows overriding the continuous-integration/jenkins/
commit status name.
A first quick check shows that this plugin could help us:
gave us (look at the non Required notification)
jenkins-jobs
chart (and no breaking change)Updating repositories' required status checks in branch protection one by one when working on them, don't hesitate to ping here or on #jenkins-infra like https://matrix.to/#/!JLUOInpEYmxJIYXlzs:matrix.org/$sQD_zXduwJpkJ9IAHnlO_UiGTYbTXeI2qcvm-QeFa58 if there is a particular repo PR stuck with a pending required status check.
Current progress on jenkins-infra repositories containing an updatecli
folder:
infra-tools
folder
updatecli
folderAll docker-*
repositories are using the parallelDockerUpdatecli
, to be splitted?
Note: https://github.com/jenkins-infra/docker-jenkins-weekly & https://github.com/jenkins-infra/docker-jenkins-infraci will be taken care of in #4171
All docker-* repositories are using the parallelDockerUpdatecli, to be splitted?
Absolutely!
While they were opened, I updated my PRs to use https://github.com/apps/jenkins-infra-updatecli instead of https://github.com/jenkins-infra-bot in updatecli values. (No more co-authored commits with both updatecli GitHub app and jenkins-infra-bot GitHub bot account)
Convention Proposal:
Jenkinsfile_updatecli
a pipeline markerCurrent progress: https://github.com/jenkins-infra/helpdesk/issues/2778#issuecomment-2222690819