chore(main): release 5.19.0

:robot: I have created a release beep boop

5.19.0 (2024-11-12)

Features

remove deprecated bata feature workflow job queue (#4249) (4066c4e)

Bug Fixes

dispatch only queued events to runners (#4257) (a0a8322)
lambda: bump @octokit/auth-app from 6.1.2 to 6.1.3 in /lambdas in the octokit group (#4252) (25f3538)
lambda: bump the aws group in /lambdas with 7 updates (#4251) (6a98712)

Migration notes

This release removes experimental / beta feature enable_workflow_job_events_queue. When depending on the events on this queue you can migrate to using the EventBridgge.

Enable eventbridge

module "runners" {

  ...
  eventbridge {
    enable = true
  }
  ...

Add rule to forward events to a queue


resource "aws_cloudwatch_event_rule" "workflow_job_in_progress" {
  name           = "workflow-job-in-progress"
  event_bus_name = modules.runners.webhook.eventbridge.name # The name of the event bus output by the module

  event_pattern = <<EOF
{
  "detail-type": ["workflow_job"],
  "detail": {
    "action": ["in_progress"]
  }
}
EOF
}

resource "aws_sqs_queue" "workflow_job_in_progress" {
  name = "workflow_job_in_progress
}

resource "aws_sqs_queue_policy" "workflow_job_in_progress" {
  queue_url = aws_sqs_queue.workflow_job_in_progress.id
  policy    = data.aws_iam_policy_document.sqs_policy.json
}

data "aws_iam_policy_document" "sqs_policy" {
  statement {
    sid     = "AllowFromEventBridge"
    actions = ["sqs:SendMessage"]

    principals {
      type        = "Service"
      identifiers = ["events.amazonaws.com"]
    }

    resources = [aws_sqs_queue.workflow_job_in_progress.arn]

    condition {
      test     = "ArnEquals"
      variable = "aws:SourceArn"
      values   = [aws_cloudwatch_event_rule.workflow_job_in_progress.arn]
    }
  }
}

This PR was generated with Release Please. See documentation.

philips-labs / terraform-aws-github-runner

chore(main): release 5.19.0 #4256