Skip to content

Add inventory cache with forceRefreshInventory support #41

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Merged
LinaBell merged 8 commits into from
Feb 18, 2026
Merged

Add inventory cache with forceRefreshInventory support #41

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
8 commits
Select commit Hold shift + click to select a range
dbd4da0
Fix release workflow to trigger production deployment
Feb 13, 2026
aefc291
Add production release CICD
Feb 13, 2026
4cf89ac
Add production release CICD
Feb 13, 2026
1333c3a
Add production release CICD
Feb 13, 2026
fae51be
Add production release CICD
Feb 13, 2026
77bf35b
Add production release CICD
Feb 13, 2026
6167a4c
Merge branch 'main' into dev
LinaBell Feb 17, 2026
cbc9d38
Add inventory cache with 6h TTL and forceRefreshInventory support
LinaBell Feb 18, 2026
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
68 changes: 34 additions & 34 deletions .github/workflows/aws_auto_release.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -8,7 +8,7 @@ on:
concurrency:
group: ${{ github.event.pull_request.number || github.ref }}
cancel-in-progress: true

permissions:
contents: write
pull-requests: read
Expand All @@ -30,10 +30,10 @@ jobs:
run: |
merged_by="${{ github.event.pull_request.merged_by.login }}"
echo "PR was merged by: $merged_by"

# Get authorized users from CODEOWNERS file
authorized_users=()

# Read CODEOWNERS file if it exists
if [[ -f ".github/CODEOWNERS" ]]; then
echo "[INFO] Reading CODEOWNERS file..."
Expand All @@ -46,21 +46,21 @@ jobs:
else
echo "[WARN] No CODEOWNERS file found"
fi

# Get repository collaborators with admin/maintain permissions using GitHub API
echo "[CHECK] Checking repository permissions..."

# Check if user has admin or maintain permissions
user_permission=$(curl -s -H "Authorization: token ${{ secrets.PAT }}" \
-H "Accept: application/vnd.github.v3+json" \
"https://api.github.com/repos/${{ github.repository }}/collaborators/$merged_by/permission" | \
jq -r '.permission // "none"')

echo "User $merged_by has permission level: $user_permission"

# Check if user is authorized
is_authorized=false

# Check if user is in CODEOWNERS
for user in "${authorized_users[@]}"; do
if [[ "$user" == "$merged_by" ]]; then
Expand All @@ -69,37 +69,37 @@ jobs:
break
fi
done

# Check if user has admin or maintain permissions
if [[ "$user_permission" == "admin" || "$user_permission" == "maintain" ]]; then
is_authorized=true
echo "[OK] User $merged_by is authorized via repository permissions ($user_permission)"
fi

# Check if user is organization owner (for metaversecloud-com org)
org_response=$(curl -s -H "Authorization: token ${{ secrets.PAT }}" \
-H "Accept: application/vnd.github.v3+json" \
"https://api.github.com/orgs/metaversecloud-com/members/$merged_by" \
-w "%{http_code}")

# Extract HTTP status code from the response
http_code=${org_response: -3}

if [[ "$http_code" == "200" ]]; then
# Check if user is an owner
owner_status=$(curl -s -H "Authorization: token ${{ secrets.PAT }}" \
-H "Accept: application/vnd.github.v3+json" \
"https://api.github.com/orgs/metaversecloud-com/memberships/$merged_by" | \
jq -r '.role // "none"')

if [[ "$owner_status" == "admin" ]]; then
is_authorized=true
echo "[OK] User $merged_by is authorized as organization owner"
fi
fi

echo "is_authorized=$is_authorized" >> $GITHUB_OUTPUT

if [[ "$is_authorized" == "false" ]]; then
echo "[ERROR] User $merged_by is not authorized to trigger releases"
echo "[TIP] Authorized users include:"
Expand All @@ -117,16 +117,16 @@ jobs:
run: |
labels='${{ toJson(github.event.pull_request.labels.*.name) }}'
echo "PR Labels: $labels"

has_release_label=false
has_major=false
has_minor=false
has_patch=false

# Check if release label exists
if echo "$labels" | grep -q "release"; then
has_release_label=true

# Check for each type of version bump
if echo "$labels" | grep -q "major"; then
has_major=true
Expand All @@ -137,13 +137,13 @@ jobs:
if echo "$labels" | grep -q "patch"; then
has_patch=true
fi

# If no specific version type is specified, default to patch
if [[ "$has_major" == "false" && "$has_minor" == "false" && "$has_patch" == "false" ]]; then
has_patch=true
fi
fi

echo "should_release=$has_release_label" >> $GITHUB_OUTPUT
echo "has_major=$has_major" >> $GITHUB_OUTPUT
echo "has_minor=$has_minor" >> $GITHUB_OUTPUT
Expand All @@ -163,51 +163,51 @@ jobs:
run: |
git config --global user.email "github-actions[bot]@users.noreply.github.com"
git config --global user.name "github-actions[bot]"

# Get the latest tag from git
latest_tag=$(git describe --tags --abbrev=0 2>/dev/null || echo "v0.0.0")
echo "Latest git tag: $latest_tag"

# Remove 'v' prefix if present
current_version=${latest_tag#v}
echo "Current version: $current_version"

# Parse current version
IFS='.' read -r major minor patch <<< "$current_version"
echo "Parsed version - Major: $major, Minor: $minor, Patch: $patch"

# Apply cumulative version bumps
if [[ "${{ steps.check.outputs.has_major }}" == "true" ]]; then
major=$((major + 1))
minor=0 # Reset minor when major is bumped
patch=0 # Reset patch when major is bumped
echo "Applied major bump: $major.0.0"
fi

if [[ "${{ steps.check.outputs.has_minor }}" == "true" ]]; then
minor=$((minor + 1))
if [[ "${{ steps.check.outputs.has_major }}" != "true" ]]; then
patch=0 # Reset patch when minor is bumped (only if major wasn't bumped)
fi
echo "Applied minor bump: $major.$minor.$patch"
fi

if [[ "${{ steps.check.outputs.has_patch }}" == "true" ]]; then
patch=$((patch + 1))
echo "Applied patch bump: $major.$minor.$patch"
fi

new_version="$major.$minor.$patch"
echo "Final calculated version: $new_version"

# Create package.json if it doesn't exist
if [[ ! -f "package.json" ]]; then
echo '{"version": "0.0.0"}' > package.json
fi

# Update package.json with new version
npm version $new_version --no-git-tag-version --allow-same-version

echo "NEW_VERSION=v$new_version" >> $GITHUB_ENV
echo "New version will be: v$new_version"

Expand All @@ -222,18 +222,18 @@ jobs:
make_latest: true
body: |
## ? Release ${{ env.NEW_VERSION }}

**Version Bumps Applied:**
- Major: ${{ steps.check.outputs.has_major }}
- Minor: ${{ steps.check.outputs.has_minor }}
- Patch: ${{ steps.check.outputs.has_patch }}

**Triggered by:** PR #${{ github.event.pull_request.number }} - ${{ github.event.pull_request.title }}
**Merged by:** @${{ github.event.pull_request.merged_by.login }}

### Changes in this PR
${{ github.event.pull_request.body }}

---
*This release was automatically created by the Auto Release workflow*

48 changes: 32 additions & 16 deletions .github/workflows/aws_dev_release.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -4,7 +4,7 @@ on:
branches:
- dev
workflow_dispatch:

env:
REPOSITORY: 'sdk-example'
ECS_Cluster: "topia-dev-sdk-apps"
Expand All @@ -14,7 +14,7 @@ env:
concurrency:
group: ${{ github.event.pull_request.number || github.ref }}
cancel-in-progress: true

permissions:
id-token: write # This is required for requesting the JWT
contents: read # This is required for actions/checkout
Expand All @@ -26,7 +26,7 @@ jobs:
steps:
- name: Checkout
uses: actions/checkout@v4

- name: get servicename
id: sername
run: |
Expand All @@ -42,27 +42,35 @@ jobs:
echo "service=$service_value" >> "$GITHUB_OUTPUT"
echo "Service value: $(echo $service_value | jq -c )"
fi

- uses: actions/setup-node@v4
with:
node-version: 20.10
cache: 'npm'
- run: npm i
- run: CI=false npm run build

- name: Set up QEMU
uses: docker/setup-qemu-action@v3

with:
platforms: arm64,amd64

- name: Configure AWS credentials
uses: aws-actions/configure-aws-credentials@v4
with:
role-to-assume: arn:aws:iam::368076259134:role/github-actions-role
aws-region: us-east-1

- name: Login to Amazon ECR
id: login-ecr
uses: aws-actions/amazon-ecr-login@v2

- name: Set up Docker Buildx
uses: docker/setup-buildx-action@v3
with:
buildkitd-flags: --debug
driver-opts: image=moby/buildkit:latest

- name: Image Metadata
id: metadata
uses: docker/metadata-action@v5
Expand All @@ -71,15 +79,23 @@ jobs:
tags: |
type=raw,value=${{ github.event.repository.name }}

- name: Build and tag
run: |
docker build --build-arg COMMIT_HASH=${{ github.sha }} --build-arg REF=${{ github.ref }} -t ${{ steps.metadata.outputs.tags }} .

- name: push docker image to Amazon ECR
run: |
docker push ${{ steps.metadata.outputs.tags }}



- name: Build and push multi-platform images to ECR
uses: docker/build-push-action@v5
with:
context: .
platforms: linux/amd64,linux/arm64
push: true
tags: ${{ steps.metadata.outputs.tags }}
build-args: |
REF=${{ github.ref }}
COMMIT_HASH=${{ github.sha }}
cache-from: type=gha
cache-to: type=gha,mode=max
provenance: false
sbom: false

deploy_matrix:
runs-on: ubuntu-latest
needs: Build
Expand All @@ -96,4 +112,4 @@ jobs:
- name: deploy
run: |
aws ecs update-service --cluster ${{ env.ECS_Cluster }} --service topia-${{ env.ENV }}-${{ matrix.service }}0 --force-new-deployment

19 changes: 10 additions & 9 deletions .github/workflows/aws_prod_release.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -12,22 +12,22 @@ env:
concurrency:
group: ${{ github.event.pull_request.number || github.ref }}
cancel-in-progress: true

permissions:
id-token: write # This is required for requesting the JWT
contents: read # This is required for actions/checkout

jobs:
Build:
runs-on: ubuntu-latest
outputs:
service: ${{ steps.sername.outputs.service }}
steps:

- name: Checkout
uses: actions/checkout@v4
with:
ref: ${{ github.event.release.tag_name }}

- name: get servicename
id: sername
run: |
Expand All @@ -53,18 +53,18 @@ jobs:
- run: npm version --no-git-tag-version --workspaces --include-workspace-root true ${{ github.event.release.tag_name }}
- run: npm i
- run: CI=false npm run build

- name: Set up QEMU
uses: docker/setup-qemu-action@v3
uses: docker/setup-qemu-action@v3.0.0
with:
platforms: arm64,amd64

- name: Configure AWS credentials
uses: aws-actions/configure-aws-credentials@v4
with:
role-to-assume: arn:aws:iam::368076259134:role/github-actions-role
aws-region: us-east-1

- name: Login to Amazon ECR
id: login-ecr
uses: aws-actions/amazon-ecr-login@v2
Expand Down Expand Up @@ -98,7 +98,7 @@ jobs:
cache-to: type=gha,mode=max
provenance: false
sbom: false

deploy_matrix:
runs-on: ubuntu-latest
needs: Build
Expand All @@ -114,4 +114,5 @@ jobs:

- name: deploy
run: |
aws ecs update-service --cluster ${{ env.ECS_Cluster }} --service topia-${{ env.ENV }}-${{ matrix.service }}0 --force-new-deployment
aws ecs update-service --cluster ${{ env.ECS_Cluster }} --service topia-${{ env.ENV }}-${{ matrix.service }}0 --force-new-deployment

Loading