npm - @cloudsnorkel/cdk-github-runners - Versions diffs - 0.14.10 → 0.14.11 - Mend

@cloudsnorkel/cdk-github-runners 0.14.10 → 0.14.11

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (38) hide show

package/.jsii +35 -35
package/assets/delete-failed-runner.lambda/index.js +18 -12
package/assets/idle-runner-repear.lambda/index.js +32 -20
package/assets/setup.lambda/index.html +7 -7
package/assets/token-retriever.lambda/index.js +18 -12
package/assets/webhook-handler.lambda/index.js +19 -13
package/assets/webhook-redelivery.lambda/index.js +13401 -0
package/lib/access.js +1 -1
package/lib/idle-runner-repear.lambda.js +19 -11
package/lib/image-builders/api.js +1 -1
package/lib/image-builders/aws-image-builder/builder.js +1 -1
package/lib/image-builders/aws-image-builder/deprecated/ami.js +1 -1
package/lib/image-builders/aws-image-builder/deprecated/container.js +1 -1
package/lib/image-builders/aws-image-builder/deprecated/linux-components.js +1 -1
package/lib/image-builders/aws-image-builder/deprecated/windows-components.js +1 -1
package/lib/image-builders/codebuild-deprecated.js +1 -1
package/lib/image-builders/components.js +1 -1
package/lib/image-builders/static.js +1 -1
package/lib/lambda-github.d.ts +4 -0
package/lib/lambda-github.js +57 -16
package/lib/lambda-helpers.js +1 -1
package/lib/providers/codebuild.js +2 -2
package/lib/providers/common.js +3 -3
package/lib/providers/ec2.js +2 -2
package/lib/providers/ecs.js +1 -1
package/lib/providers/fargate.js +2 -2
package/lib/providers/lambda.js +2 -2
package/lib/runner.d.ts +1 -0
package/lib/runner.js +19 -2
package/lib/secrets.js +1 -1
package/lib/webhook-handler.lambda.js +2 -2
package/lib/webhook-redelivery-function.d.ts +13 -0
package/lib/webhook-redelivery-function.js +23 -0
package/lib/webhook-redelivery.d.ts +26 -0
package/lib/webhook-redelivery.js +43 -0
package/lib/webhook-redelivery.lambda.d.ts +9 -0
package/lib/webhook-redelivery.lambda.js +149 -0
package/package.json +16 -14

package/assets/token-retriever.lambda/index.js CHANGED Viewed

@@ -13200,6 +13200,7 @@ __export(token_retriever_lambda_exports, {
 module.exports = __toCommonJS(token_retriever_lambda_exports);
 // src/lambda-github.ts
+var import_crypto = require("crypto");
 var import_auth_app = __toESM(require_dist_node12());
 var import_rest = __toESM(require_dist_node19());
@@ -13227,26 +13228,33 @@ function baseUrlFromDomain(domain) {
   }
   return `https://${domain}/api/v3`;
 }
-var octokitCache = {};
+var octokitCache = /* @__PURE__ */ new Map();
 async function getOctokit(installationId) {
   if (!process.env.GITHUB_SECRET_ARN || !process.env.GITHUB_PRIVATE_KEY_SECRET_ARN) {
     throw new Error("Missing environment variables");
   }
   const githubSecrets = await getSecretJsonValue(process.env.GITHUB_SECRET_ARN);
-  if (octokitCache.octokit && octokitCache.installationId == installationId && octokitCache.secrets && octokitCache.secrets.domain == githubSecrets.domain && octokitCache.secrets.appId == githubSecrets.appId && octokitCache.secrets.personalAuthToken == githubSecrets.personalAuthToken) {
+  const cacheKey = (0, import_crypto.createHash)("sha256").update(`${installationId || "no-install"}-${githubSecrets.domain}-${githubSecrets.appId}-${githubSecrets.personalAuthToken}`).digest("hex");
+  const cached = octokitCache.get(cacheKey);
+  if (cached) {
     try {
-      await octokitCache.octokit.rest.meta.getOctocat();
-      console.log("Using cached octokit");
+      await cached.rest.meta.getOctocat();
+      console.log({
+        notice: "Using cached octokit"
+      });
       return {
-        octokit: octokitCache.octokit,
-        githubSecrets: octokitCache.secrets
+        octokit: cached,
+        githubSecrets
       };
     } catch (e) {
-      console.log("Octokit cache is invalid", e);
-      octokitCache.octokit = void 0;
+      console.log({
+        notice: "Octokit cache is invalid",
+        error: e
+      });
+      octokitCache.delete(cacheKey);
     }
   }
-  let baseUrl = baseUrlFromDomain(githubSecrets.domain);
+  const baseUrl = baseUrlFromDomain(githubSecrets.domain);
   let token;
   if (githubSecrets.personalAuthToken) {
     token = githubSecrets.personalAuthToken;
@@ -13269,9 +13277,7 @@ async function getOctokit(installationId) {
     baseUrl,
     auth: token
   });
-  octokitCache.octokit = octokit;
-  octokitCache.installationId = installationId;
-  octokitCache.secrets = githubSecrets;
+  octokitCache.set(cacheKey, octokit);
   return {
     octokit,
     githubSecrets

package/assets/webhook-handler.lambda/index.js CHANGED Viewed

@@ -13204,6 +13204,7 @@ var crypto = __toESM(require("crypto"));
 var import_client_sfn = require("@aws-sdk/client-sfn");
 // src/lambda-github.ts
+var import_crypto = require("crypto");
 var import_auth_app = __toESM(require_dist_node12());
 var import_rest = __toESM(require_dist_node19());
@@ -13231,26 +13232,33 @@ function baseUrlFromDomain(domain) {
   }
   return `https://${domain}/api/v3`;
 }
-var octokitCache = {};
+var octokitCache = /* @__PURE__ */ new Map();
 async function getOctokit(installationId) {
   if (!process.env.GITHUB_SECRET_ARN || !process.env.GITHUB_PRIVATE_KEY_SECRET_ARN) {
     throw new Error("Missing environment variables");
   }
   const githubSecrets = await getSecretJsonValue(process.env.GITHUB_SECRET_ARN);
-  if (octokitCache.octokit && octokitCache.installationId == installationId && octokitCache.secrets && octokitCache.secrets.domain == githubSecrets.domain && octokitCache.secrets.appId == githubSecrets.appId && octokitCache.secrets.personalAuthToken == githubSecrets.personalAuthToken) {
+  const cacheKey = (0, import_crypto.createHash)("sha256").update(`${installationId || "no-install"}-${githubSecrets.domain}-${githubSecrets.appId}-${githubSecrets.personalAuthToken}`).digest("hex");
+  const cached = octokitCache.get(cacheKey);
+  if (cached) {
     try {
-      await octokitCache.octokit.rest.meta.getOctocat();
-      console.log("Using cached octokit");
+      await cached.rest.meta.getOctocat();
+      console.log({
+        notice: "Using cached octokit"
+      });
       return {
-        octokit: octokitCache.octokit,
-        githubSecrets: octokitCache.secrets
+        octokit: cached,
+        githubSecrets
       };
     } catch (e) {
-      console.log("Octokit cache is invalid", e);
-      octokitCache.octokit = void 0;
+      console.log({
+        notice: "Octokit cache is invalid",
+        error: e
+      });
+      octokitCache.delete(cacheKey);
     }
   }
-  let baseUrl = baseUrlFromDomain(githubSecrets.domain);
+  const baseUrl = baseUrlFromDomain(githubSecrets.domain);
   let token;
   if (githubSecrets.personalAuthToken) {
     token = githubSecrets.personalAuthToken;
@@ -13273,9 +13281,7 @@ async function getOctokit(installationId) {
     baseUrl,
     auth: token
   });
-  octokitCache.octokit = octokit;
-  octokitCache.installationId = installationId;
-  octokitCache.secrets = githubSecrets;
+  octokitCache.set(cacheKey, octokit);
   return {
     octokit,
     githubSecrets
@@ -13373,7 +13379,7 @@ async function handler(event) {
   if (getHeader(event, "x-github-event") !== "workflow_job") {
     console.error(`This webhook only accepts workflow_job, got ${getHeader(event, "x-github-event")}`);
     return {
-      statusCode: 400,
+      statusCode: 200,
       body: "Expecting workflow_job"
     };
   }