Merge branch 'develop' into fix/1203-child-exceptions

Author: Michael Brewer

.github/workflows/auto-merge.yml

@@ -0,0 +1,25 @@
+name: auto-merge
+
+on:
+  pull_request:
+    types: [opened, edited, synchronize]
+
+permissions:
+  contents: write
+
+jobs:
+  dependabot:
+    runs-on: ubuntu-latest
+    if: ${{ github.actor == 'dependabot[bot]' }}
+    steps:
+      - name: Dependabot metadata
+        id: metadata
+        uses: dependabot/[email protected]
+        with:
+          github-token: "${{ secrets.GITHUB_TOKEN }}"
+      - name: Enable auto-merge for mypy-boto3 stubs Dependabot PRs
+        if: ${{contains(steps.metadata.outputs.dependency-names, 'mypy-boto3')}} # && steps.metadata.outputs.update-type == 'version-update:semver-patch'
+        run: gh pr merge --auto --squash "$PR_URL"
+        env:
+          PR_URL: ${{github.event.pull_request.html_url}}
+          GITHUB_TOKEN: ${{secrets.GITHUB_TOKEN}}

.github/workflows/export_pr_details.yml

@@ -0,0 +1,75 @@
+on:
+  workflow_call:
+    inputs:
+      record_pr_workflow_id:
+        required: true
+        type: number
+    secrets:
+      token:
+        required: true
+    # Map the workflow outputs to job outputs
+    outputs:
+      prNumber:
+        description: "The first output string"
+        value: ${{ jobs.export_pr_details.outputs.prNumber }}
+      prTitle:
+        description: "The second output string"
+        value: ${{ jobs.export_pr_details.outputs.prTitle }}
+      prBody:
+        description: "The second output string"
+        value: ${{ jobs.export_pr_details.outputs.prBody }}
+      prAuthor:
+        description: "The second output string"
+        value: ${{ jobs.export_pr_details.outputs.prAuthor }}
+      prAction:
+        description: "The second output string"
+        value: ${{ jobs.export_pr_details.outputs.prAction }}
+
+name: Export Pull Request details from fork
+jobs:
+  export_pr_details:
+    runs-on: ubuntu-latest
+    # Map the job outputs to step outputs
+    outputs:
+      prNumber: ${{ steps.prNumber.outputs.prNumber }}
+      prTitle: ${{ steps.prTitle.outputs.prTitle }}
+      prBody: ${{ steps.prBody.outputs.prBody }}
+      prAuthor: ${{ steps.prAuthor.outputs.prAuthor }}
+      prAction: ${{ steps.prAction.outputs.prAction }}
+    steps:
+      - name: "Download artifact"
+        uses: actions/github-script@v6
+        # For security, we only download artifacts tied to the successful PR recording workflow
+        with:
+          github-token: ${{ inputs.token }}
+          script: |
+            const fs = require('fs');
+
+            const artifacts = await github.rest.actions.listWorkflowRunArtifacts({
+               owner: context.repo.owner,
+               repo: context.repo.repo,
+               run_id: ${{inputs.record_pr_workflow_id}},
+            });
+
+            const matchArtifact = artifacts.data.artifacts.filter(artifact => artifact.name == "pr")[0];
+
+            const artifact = await github.rest.actions.downloadArtifact({
+               owner: context.repo.owner,
+               repo: context.repo.repo,
+               artifact_id: matchArtifact.id,
+               archive_format: 'zip',
+            });
+
+            fs.writeFileSync('${{github.workspace}}/pr.zip', Buffer.from(artifact.data));
+      # NodeJS standard library doesn't provide ZIP capabilities; use system `unzip` command instead
+      - run: unzip pr.zip
+      - id: prNumber
+        run: echo ::set-output name=prNumber::$(cat ./number)
+      - id: prTitle
+        run: echo ::set-output name=prTitle::$(cat ./title)
+      - id: prBody
+        run: echo ::set-output name=prBody::$(cat ./body)
+      - id: prAuthor
+        run: echo ::set-output name=prAuthor::$(cat ./author)
+      - id: prAction
+        run: echo ::set-output name=prAction::$(cat ./action)

.github/workflows/on_closed_issues.yml

@@ -0,0 +1,12 @@
+name: Closed Issue Message
+on:
+    issues:
+        types: [closed]
+jobs:
+    auto_comment:
+        runs-on: ubuntu-latest
+        steps:
+            - uses: aws-actions/closed-issue-message@v1
+              with:
+                  repo-token: "${{ secrets.GITHUB_TOKEN }}"
+                  message: "Comments on closed issues are hard for our team to see."

.github/workflows/on_merged_pr.yml

@@ -0,0 +1,46 @@
+on:
+  pull_request:
+    types:
+      - closed
+
+env:
+  RELEASE_LABEL: "pending-release"
+  MAINTAINERS_TEAM: "@awslabs/aws-lambda-powertools-python"
+
+jobs:
+  release_label_on_merge:
+    if: github.event.pull_request.merged == true && github.event.pull_request.user.login != 'dependabot[bot]'
+    runs-on: ubuntu-latest
+    steps:
+      - name: "Label PR related issue for release"
+        uses: actions/github-script@v6
+        with:
+          github-token: ${{ secrets.GITHUB_TOKEN }}
+          script: |
+            const prBody = context.payload.body;
+            const prNumber = context.payload.number;
+            const releaseLabel = process.env.RELEASE_LABEL;
+
+            const RELATED_ISSUE_REGEX = /Issue number:.+(\d)/
+
+            const matcher = new RegExp(RELATED_ISSUE_REGEX)
+            const isMatch = matcher.exec(prBody)
+            if (isMatch != null) {
+                let relatedIssueNumber = isMatch[1]
+                console.info(`Auto-labeling related issue ${relatedIssueNumber} for release`)
+
+                await github.rest.issues.addLabels({
+                  issue_number: relatedIssueNumber,
+                  owner: context.repo.owner,
+                  repo: context.repo.repo,
+                  labels: [releaseLabel]
+                })
+            } else {
+              let msg = `${MAINTAINERS_TEAM} No related issues found. Please ensure '${RELEASE_LABEL}.' label is applied before releasing.`;
+              await github.rest.issues.createComment({
+                owner: context.repo.owner,
+                repo: context.repo.repo,
+                body: msg,
+                issue_number: prNumber,
+              });
+            }

.github/workflows/on_opened_pr.yml

@@ -0,0 +1,58 @@
+on:
+  workflow_run:
+    workflows: ["Record PR number"]
+    types:
+      - completed
+
+env:
+  BLOCK_LABEL: "do-not-merge"
+  BLOCK_REASON_LABEL: "need-issue"
+
+jobs:
+  get_pr_details:
+    if: github.event.workflow_run.event == 'pull_request' && github.event.workflow_run.conclusion == 'success'
+    uses: ./.github/workflows/export_pr_details.yml
+    with:
+      record_pr_workflow_id: ${{ github.event.workflow_run.id }}
+    secrets:
+      token: ${{ secrets.GITHUB_TOKEN }}
+  check_related_issue:
+    needs: get_pr_details
+    if: >
+      ${{ needs.get_pr_details.outputs.prAuthor != 'dependabot[bot]' &&
+          needs.get_pr_details.outputs.prAction == 'opened'
+      }}
+    runs-on: ubuntu-latest
+    steps:
+      - name: "Ensure related issue is present"
+        uses: actions/github-script@v6
+        with:
+          # Maintenance: convert into a standalone JS like post_release.js
+          script: |
+            const prBody = ${{ needs.get_pr_details.outputs.prBody }};
+            const prNumber = ${{ needs.get_pr_details.outputs.prNumber }};
+            const blockLabel = process.env.BLOCK_LABEL;
+            const blockReasonLabel = process.env.BLOCK_REASON_LABEL;
+
+            const RELATED_ISSUE_REGEX = /Issue number:.+(\d)/
+
+            const matcher = new RegExp(RELATED_ISSUE_REGEX)
+            const isMatch = matcher.exec(prBody)
+            if (isMatch == null) {
+                console.info(`No related issue found, maybe the author didn't use the template but there is one.`)
+
+                let msg = `⚠️ No related issues found. Please ensure there is an open issue related to this change to avoid significant delays or closure. ⚠️`;
+                await github.rest.issues.createComment({
+                  owner: context.repo.owner,
+                  repo: context.repo.repo,
+                  body: msg,
+                  issue_number: prNumber,
+                });
+
+                await github.rest.issues.addLabels({
+                  issue_number: prNumber,
+                  owner: context.repo.owner,
+                  repo: context.repo.repo,
+                  labels: [blockLabel, blockReasonLabel]
+                })
+            }

.github/workflows/publish.yml

@@ -48,7 +48,7 @@ jobs:
         with:
           fetch-depth: 0
       - name: Set up Python
-        uses: actions/setup-python@v3
+        uses: actions/setup-python@v4
         with:
           python-version: "3.8"
       - name: Set release notes tag

.github/workflows/python_build.yml

@@ -2,10 +2,22 @@ name: Code quality
 
 on:
   pull_request:
+    paths:
+      - "aws_lambda_powertools/**"
+      - "tests/**"
+      - "pyproject.toml"
+      - "poetry.lock"
+      - "mypy.ini"
     branches:
       - develop
       - master
   push:
+    paths:
+      - "aws_lambda_powertools/**"
+      - "tests/**"
+      - "pyproject.toml"
+      - "poetry.lock"
+      - "mypy.ini"
     branches:
       - develop
       - master
@@ -23,7 +35,7 @@ jobs:
     steps:
       - uses: actions/checkout@v3
       - name: Set up Python ${{ matrix.python-version }}
-        uses: actions/setup-python@v3
+        uses: actions/setup-python@v4
         with:
           python-version: ${{ matrix.python-version }}
       - name: Install dependencies

.github/workflows/python_docs.yml

@@ -17,7 +17,7 @@ jobs:
         with:
           fetch-depth: 0
       - name: Set up Python
-        uses: actions/setup-python@v3
+        uses: actions/setup-python@v4
         with:
           python-version: "3.8"
       - name: Install dependencies

.github/workflows/rebuild_latest_docs.yml

@@ -25,7 +25,7 @@ jobs:
       with:
         fetch-depth: 0
     - name: Set up Python
-      uses: actions/setup-python@v3
+      uses: actions/setup-python@v4
       with:
         python-version: "3.8"
     - name: Set release notes tag

.github/workflows/record_pr.yml

@@ -15,6 +15,9 @@ jobs:
           mkdir -p ./pr
           echo ${{ github.event.number }} > ./pr/number
           echo "${{ github.event.pull_request.title }}" > ./pr/title
+          echo "${{ github.event.pull_request.body }}" > ./pr/body
+          echo "${{ github.event.pull_request.user.login }}" > ./pr/author
+          echo "${{ github.event.action }}" > ./pr/action
       - uses: actions/upload-artifact@v3
         with:
           name: pr

.gitignore

@@ -304,3 +304,5 @@ api/
 site/
 !404.html
 !docs/overrides/*.html
+
+!.github/workflows/lib