Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

feat(ci): delete unused artifacts in registries #5873

Merged
merged 5 commits into from
Jan 16, 2023
Merged

feat(ci): delete unused artifacts in registries #5873

Changes from all commits
Commits
Show all changes
5 commits
Select commit Hold shift + click to select a range
8248006
feat(ci): delete unused artifacts in registries
gustavovalverde Dec 19, 2022
d1e9ad2
fix(action): use hours instead of days
gustavovalverde Dec 19, 2022
19ca881
chore: add TODO
gustavovalverde Dec 19, 2022
6d6ea96
Update .github/workflows/delete-gcp-resources.yml
gustavovalverde Jan 10, 2023
a7b0a44
fix: allow the action to fail if some images can't be deleted
gustavovalverde Jan 16, 2023
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
46 changes: 46 additions & 0 deletions .github/workflows/delete-gcp-resources.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -1,3 +1,4 @@
# TODO: rename this action name and filename to Delete infra resources
name: Delete GCP resources

on:
Expand All @@ -17,6 +18,9 @@ env:
# But keep the latest $KEEP_LATEST_IMAGE_COUNT images of each type.
# We keep this small to reduce storage costs.
KEEP_LATEST_IMAGE_COUNT: 2
# Delete all artifacts in registry created before $DELETE_IMAGE_HOURS hours ago.
# We keep this long enough for PRs that are still on the same commit can re-run with the same image.
DELETE_IMAGE_HOURS: 504h # 21 days

jobs:
delete-resources:
Expand Down Expand Up @@ -168,3 +172,45 @@ jobs:

gcloud compute images delete "${IMAGE}" || continue
done

# We're using a generic approach here, which allows multiple registries to be included,
# even those not related to GCP. Enough reason to create a separate job.
clean-registries:
name: Delete unused artifacts in registry
runs-on: ubuntu-latest
permissions:
contents: 'read'
id-token: 'write'
steps:
- uses: actions/[email protected]
with:
persist-credentials: false

# Setup gcloud CLI
- name: Authenticate to Google Cloud
id: auth
uses: google-github-actions/[email protected]
with:
retries: '3'
workload_identity_provider: 'projects/143793276228/locations/global/workloadIdentityPools/github-actions/providers/github-oidc'
service_account: '[email protected]'
token_format: 'access_token'

- name: Login to Google Artifact Registry
uses: docker/[email protected]
with:
registry: us-docker.pkg.dev
username: oauth2accesstoken
password: ${{ steps.auth.outputs.access_token }}

# Deletes all images older than $DELETE_IMAGE_HOURS days.
- uses: 'docker://us-docker.pkg.dev/gcr-cleaner/gcr-cleaner/gcr-cleaner-cli'
continue-on-error: true # TODO: remove after fixig https://github.com/ZcashFoundation/zebra/issues/5933
gustavovalverde marked this conversation as resolved.
Show resolved Hide resolved
# Refer to the official documentation to understand available arguments:
# https://github.com/GoogleCloudPlatform/gcr-cleaner
with:
args: >-
-repo=us-docker.pkg.dev/zealous-zebra/zebra/zebrad-test
-repo=us-docker.pkg.dev/zealous-zebra/zebra/lightwalletd
-grace=${{ env.DELETE_IMAGE_HOURS }}
teor2345 marked this conversation as resolved.
Show resolved Hide resolved
-keep=${{ env.KEEP_LATEST_IMAGE_COUNT }}