Re: [PROPOSAL] Store Iceberg build scans on ASF Develocity (ge.apache.org)

Mon, 25 Nov 2024 06:10:56 -0800 

We are using it in Apache Beam via this configuration:

develocity {
  server = "https://ge.apache.org";

  buildScan {
    uploadInBackground = !isCi
    publishing.onlyIf { it.isAuthenticated }
    obfuscation {
      ipAddresses { addresses -> addresses.map { "0.0.0.0" } }
    }
  }
}

and using the "com.gradle.develocity" plugin.

It's documented here:
https://cwiki.apache.org/confluence/pages/viewpage.action?spaceKey=INFRA&title=Project+Onboarding+Instructions+for+Develocity

For GitHub Actions builds in the Apache GitHub organization, an access
token is stored in the organizational secret GE_ACCESS_TOKEN. For
security, GitHub Actions do not pass secrets to runners running
workflows triggered from forked repositories.

So, it's not a problem to setup authentication.

On a separate note, we can also setup a shared gradle cache (something
like https://iceberg-cache.apache.org/cache/), but that's another
topic :)

Regards
JB

On Mon, Nov 25, 2024 at 12:58 PM Robert Stupp <[email protected]> wrote:
>
> It's tricky - have to use a mixture actually, as I notes in 
> https://github.com/apache/polaris/pull/475#issuecomment-2497792648 : 
> "Apache's instance rejects unauthenticated build scans, which is always the 
> case for PR CI runs (no secrets in those GH workflows). So I think it's fine 
> to let CI runs that don't have the access-key secret publish to Gradle's 
> infra, and those that have it publish to Apache's infra."
>
>
> On 25.11.24 12:39, Eduard Tudenhöfner wrote:
>
> I think that's a good idea, so +1 from my side.
>
> On Mon, Nov 25, 2024 at 11:10 AM Jean-Baptiste Onofré <[email protected]> 
> wrote:
>>
>> Hi folks,
>>
>> The ASF is hosting a Gradle Develocity instance where we can store our
>> build scans.
>>
>> It's hosted on https://ge.apache.org.
>> Several projects are using it (Apache Beam, Apache Pekko, etc).
>>
>> Build scans collect information about a build, including the actual
>> output of failed tests.
>> It's convenient to investigate test failures (in our GH Actions) and
>> Gradle plugins executions.
>>
>> I'm proposing to export/store our build scans on ASF Develocity.
>>
>> Thoughts ?
>>
>> Regards
>> JB
>
> --
> Robert Stupp
> @snazy

Reply via email to