diff --git a/.gitignore b/.gitignore index a6e65388b..62b7f84ae 100644 --- a/.gitignore +++ b/.gitignore @@ -7,3 +7,6 @@ repo.key # Ignore any agent keys (public or private) we have stored agent_key* agent.key* + +# Ignore a local clone of the `cryptic-buildkite-plugin` repository +cryptic-buildkite-plugin/ diff --git a/Makefile b/Makefile index 6b3cfe78d..e75b04fdc 100644 --- a/Makefile +++ b/Makefile @@ -1,3 +1,5 @@ +export PATH := $(shell pwd)/cryptic-buildkite-plugin/bin:$(PATH) + decrypt: cd .buildkite/cryptic_repo_root && decrypt --repo-root=$$(pwd) --verbose diff --git a/pipelines/main/0_webui.yml b/pipelines/main/0_webui.yml index f3e48e17e..2da76b42b 100644 --- a/pipelines/main/0_webui.yml +++ b/pipelines/main/0_webui.yml @@ -2,9 +2,9 @@ # It is purely for keeping track of the changes we make to the webUI configuration; modifying this file has no effect. # We use the `cryptic` buildkite plugin to provide secrets management, which requires some integration into the WebUI's steps. steps: - - group: ":buildkite: Infrastructure" + - group: "Web UI" steps: - - label: ":unlock: Unlock secrets, launch pipelines" + - label: "Unlock secrets, launch pipelines" agents: queue: "julia" cryptic_capable: "true" diff --git a/pipelines/main/launch_signed_jobs.yml b/pipelines/main/launch_signed_jobs.yml index b107feb06..b42f0fba6 100644 --- a/pipelines/main/launch_signed_jobs.yml +++ b/pipelines/main/launch_signed_jobs.yml @@ -1,29 +1,35 @@ # This file launches upload jobs that wait upon previous jobs, then upload their artifacts to S3 + steps: - - label: ":buildkite: :unlock: Launch signed pipelines" - plugins: - - JuliaCI/external-buildkite#v1: - version: "./.buildkite-external-version" - repo_url: "https://github.com/JuliaCI/julia-buildkite" - commands: | - # Explicitly pass along the cryptic token to child pipelines - export BUILDKITE_PLUGIN_CRYPTIC_BASE64_SIGNED_JOB_ID_SECRET + - group: "Upload" + notify: + - github_commit_status: + context: "Upload" + steps: + - label: "Launch signed pipelines" + plugins: + - JuliaCI/external-buildkite#v1: + version: "./.buildkite-external-version" + repo_url: "https://github.com/JuliaCI/julia-buildkite" + commands: | + # Explicitly pass along the cryptic token to child pipelines + export BUILDKITE_PLUGIN_CRYPTIC_BASE64_SIGNED_JOB_ID_SECRET - # Launch `upload_linux` jobs to store tarballs into S3 once tests are done - bash .buildkite/utilities/arches_pipeline_upload.sh \ - .buildkite/pipelines/main/platforms/upload_linux.arches \ - .buildkite/pipelines/main/platforms/upload_linux.yml + # Launch `upload_linux` jobs to store tarballs into S3 once tests are done + bash .buildkite/utilities/arches_pipeline_upload.sh \ + .buildkite/pipelines/main/platforms/upload_linux.arches \ + .buildkite/pipelines/main/platforms/upload_linux.yml - # Launch `upload_macos` jobs to store tarballs into S3 once tests are done - bash .buildkite/utilities/arches_pipeline_upload.sh \ - .buildkite/pipelines/main/platforms/upload_macos.arches \ - .buildkite/pipelines/main/platforms/upload_macos.yml + # Launch `upload_macos` jobs to store tarballs into S3 once tests are done + bash .buildkite/utilities/arches_pipeline_upload.sh \ + .buildkite/pipelines/main/platforms/upload_macos.arches \ + .buildkite/pipelines/main/platforms/upload_macos.yml - # Don't share this with buildkite's env display - unset BUILDKITE_PLUGIN_CRYPTIC_BASE64_SIGNED_JOB_ID_SECRET - agents: - queue: "julia" - cryptic_capable: "true" - env: - # Receive cryptic token from parent job - BUILDKITE_PLUGIN_CRYPTIC_BASE64_SIGNED_JOB_ID_SECRET: ${BUILDKITE_PLUGIN_CRYPTIC_BASE64_SIGNED_JOB_ID_SECRET?} + # Don't share this with buildkite's env display + unset BUILDKITE_PLUGIN_CRYPTIC_BASE64_SIGNED_JOB_ID_SECRET + agents: + queue: "julia" + cryptic_capable: "true" + env: + # Receive cryptic token from parent job + BUILDKITE_PLUGIN_CRYPTIC_BASE64_SIGNED_JOB_ID_SECRET: ${BUILDKITE_PLUGIN_CRYPTIC_BASE64_SIGNED_JOB_ID_SECRET?} diff --git a/pipelines/main/launch_signed_jobs.yml.signature b/pipelines/main/launch_signed_jobs.yml.signature index 227493462..c149f7f74 100644 Binary files a/pipelines/main/launch_signed_jobs.yml.signature and b/pipelines/main/launch_signed_jobs.yml.signature differ diff --git a/pipelines/main/launch_unsigned_builders.yml b/pipelines/main/launch_unsigned_builders.yml index 83dbb7470..1d2e87832 100644 --- a/pipelines/main/launch_unsigned_builders.yml +++ b/pipelines/main/launch_unsigned_builders.yml @@ -13,48 +13,61 @@ # something about the privileged steps. steps: - - group: ":buildkite: Infrastructure" + - group: "Build" + notify: + - github_commit_status: + context: "Build" steps: - - label: ":buildkite: Launch misc. jobs" + - label: "Launch build jobs" plugins: - JuliaCI/external-buildkite#v1: version: "./.buildkite-external-version" repo_url: "https://github.com/JuliaCI/julia-buildkite" commands: | - buildkite-agent pipeline upload .buildkite/pipelines/main/misc/whitespace.yml + # Launch Linux build jobs + bash .buildkite/utilities/arches_pipeline_upload.sh \ + .buildkite/pipelines/main/platforms/build_linux.arches \ + .buildkite/pipelines/main/platforms/build_linux.yml + # Launch macOS packaging jobs + bash .buildkite/utilities/arches_pipeline_upload.sh \ + .buildkite/pipelines/main/platforms/build_macos.arches \ + .buildkite/pipelines/main/platforms/build_macos.yml agents: queue: "julia" - - - group: ":linux: Linux" + - group: "Check" + notify: + - github_commit_status: + context: "Check" steps: - - label: ":buildkite: Launch jobs" + - label: "Launch check jobs" plugins: - JuliaCI/external-buildkite#v1: version: "./.buildkite-external-version" repo_url: "https://github.com/JuliaCI/julia-buildkite" commands: | - # Launch the miscellaneous jobs in alphabetical order. buildkite-agent pipeline upload .buildkite/pipelines/main/misc/doctest.yml buildkite-agent pipeline upload .buildkite/pipelines/main/misc/embedding.yml buildkite-agent pipeline upload .buildkite/pipelines/main/misc/llvmpasses.yml buildkite-agent pipeline upload .buildkite/pipelines/main/misc/sanitizers.yml - - # Launch Linux packaging jobs - bash .buildkite/utilities/arches_pipeline_upload.sh \ - .buildkite/pipelines/main/platforms/build_linux.arches \ - .buildkite/pipelines/main/platforms/build_linux.yml - - # Launch macos packaging jobs - bash .buildkite/utilities/arches_pipeline_upload.sh \ - .buildkite/pipelines/main/platforms/build_macos.arches \ - .buildkite/pipelines/main/platforms/build_macos.yml - - # Launch Linux testing jobs + buildkite-agent pipeline upload .buildkite/pipelines/main/misc/whitespace.yml + agents: + queue: "julia" + - group: "Test" + notify: + - github_commit_status: + context: "Test" + steps: + - label: "Launch test jobs" + plugins: + - JuliaCI/external-buildkite#v1: + version: "./.buildkite-external-version" + repo_url: "https://github.com/JuliaCI/julia-buildkite" + commands: | + # Launch Linux test jobs bash .buildkite/utilities/arches_pipeline_upload.sh \ .buildkite/pipelines/main/platforms/test_linux.arches \ .buildkite/pipelines/main/platforms/test_linux.yml - - # Launch macos testing jobs + # Launch macOS test jobs bash .buildkite/utilities/arches_pipeline_upload.sh \ .buildkite/pipelines/main/platforms/test_macos.arches \ .buildkite/pipelines/main/platforms/test_macos.yml diff --git a/pipelines/main/misc/doctest.yml b/pipelines/main/misc/doctest.yml index a41dbc776..9b5ac1a8b 100644 --- a/pipelines/main/misc/doctest.yml +++ b/pipelines/main/misc/doctest.yml @@ -1,5 +1,5 @@ steps: - - group: ":linux: Linux" + - group: "Check" steps: - label: "doctest" key: doctest diff --git a/pipelines/main/misc/embedding.yml b/pipelines/main/misc/embedding.yml index a29ec0f83..dd4d3704d 100644 --- a/pipelines/main/misc/embedding.yml +++ b/pipelines/main/misc/embedding.yml @@ -1,5 +1,5 @@ steps: - - group: ":linux: Linux" + - group: "Check" steps: - label: "embedding" key: "embedding" diff --git a/pipelines/main/misc/llvmpasses.yml b/pipelines/main/misc/llvmpasses.yml index 105ead0c1..2bda66d4f 100644 --- a/pipelines/main/misc/llvmpasses.yml +++ b/pipelines/main/misc/llvmpasses.yml @@ -1,5 +1,5 @@ steps: - - group: ":linux: Linux" + - group: "Check" steps: - label: "analyzegc" key: "analyzegc" @@ -28,7 +28,6 @@ steps: queue: "julia" sandbox_capable: "true" os: "linux" - - label: "llvmpasses" key: "llvmpasses" plugins: diff --git a/pipelines/main/misc/sanitizers.yml b/pipelines/main/misc/sanitizers.yml index 62a1eafac..218782dc3 100644 --- a/pipelines/main/misc/sanitizers.yml +++ b/pipelines/main/misc/sanitizers.yml @@ -1,5 +1,5 @@ steps: - - group: ":linux: Linux" + - group: "Check" steps: - label: "asan" key: "asan" @@ -36,7 +36,6 @@ steps: queue: "julia" sandbox_capable: "true" os: "linux" - - label: "tsan" key: "tsan" plugins: diff --git a/pipelines/main/misc/whitespace.yml b/pipelines/main/misc/whitespace.yml index 5af988315..a033fd9f4 100644 --- a/pipelines/main/misc/whitespace.yml +++ b/pipelines/main/misc/whitespace.yml @@ -1,7 +1,7 @@ steps: - - group: ":buildkite: Infrastructure" + - group: "Check" steps: - - label: ":buildkite: Whitespace check" + - label: "whitespace" key: "whitespace" plugins: - JuliaCI/external-buildkite#v1: diff --git a/pipelines/main/platforms/build_linux.yml b/pipelines/main/platforms/build_linux.yml index e9c706b28..4860e1a5e 100644 --- a/pipelines/main/platforms/build_linux.yml +++ b/pipelines/main/platforms/build_linux.yml @@ -1,5 +1,5 @@ steps: - - group: ":linux: Linux" + - group: "Build" steps: - label: ":linux: build ${TRIPLET?}" key: "build_${TRIPLET?}" diff --git a/pipelines/main/platforms/build_macos.yml b/pipelines/main/platforms/build_macos.yml index 38813a3b2..c5f83a1df 100644 --- a/pipelines/main/platforms/build_macos.yml +++ b/pipelines/main/platforms/build_macos.yml @@ -1,5 +1,5 @@ steps: - - group: ":macos: Macos" + - group: "Build" steps: - label: ":macos: build ${TRIPLET?}" key: "build_${TRIPLET?}" @@ -17,4 +17,3 @@ steps: # Receive some environment mappings from our templating engine TRIPLET: "${TRIPLET?}" MAKE_FLAGS: "${MAKE_FLAGS?}" - diff --git a/pipelines/main/platforms/test_linux.yml b/pipelines/main/platforms/test_linux.yml index c023362c6..50d932e9f 100644 --- a/pipelines/main/platforms/test_linux.yml +++ b/pipelines/main/platforms/test_linux.yml @@ -1,7 +1,7 @@ steps: - - group: ":linux: Linux" + - group: "Test" steps: - - label: ":linux: :test_tube: test ${TRIPLET?}${USE_RR-}" + - label: ":linux: test ${TRIPLET?}${USE_RR-}" key: "test_${TRIPLET?}${USE_RR-}" depends_on: - "build_${TRIPLET?}" @@ -33,4 +33,3 @@ steps: JULIA_SHELL: "/bin/bash" TRIPLET: "${TRIPLET?}" USE_RR: "${USE_RR?}" - \ No newline at end of file diff --git a/pipelines/main/platforms/test_macos.yml b/pipelines/main/platforms/test_macos.yml index dd91cf811..12224748f 100644 --- a/pipelines/main/platforms/test_macos.yml +++ b/pipelines/main/platforms/test_macos.yml @@ -1,7 +1,7 @@ steps: - - group: ":macos: Macos" + - group: "Test" steps: - - label: ":macos: :test_tube: test ${TRIPLET?}" + - label: ":macos: test ${TRIPLET?}" key: "test_${TRIPLET?}" depends_on: - "build_${TRIPLET?}" diff --git a/pipelines/main/platforms/upload_linux.yml b/pipelines/main/platforms/upload_linux.yml index 4add5730d..b96febee5 100644 --- a/pipelines/main/platforms/upload_linux.yml +++ b/pipelines/main/platforms/upload_linux.yml @@ -1,48 +1,50 @@ steps: - - label: ":linux: upload ${TRIPLET?}" - key: "upload_${TRIPLET?}" - # We only upload to S3 if one of the following criteria are true: - # 1. The branch is `master`. - # 2. The branch is `release-*`. - # 3. The build is a tag build AND the tag is `v*`. - # 4. The pipeline is `julia-buildkite`. - if: (build.branch == "master") || (build.branch =~ /^release-/) || (build.tag =~ /^v/) || (pipeline.slug == "julia-buildkite") - depends_on: - # Wait for the builder to finish - - "build_${TRIPLET?}" - # Wait for the tester to finish - - "test_${TRIPLET?}" - # Prevent multiple pipelines from uploading to S3 simultaneously - # It is okay for two different triplets to upload simultaneously - concurrency: 1 - concurrency_group: 'upload/julialangnightlies/${TRIPLET?}' - plugins: - - JuliaCI/external-buildkite#v1: - version: "./.buildkite-external-version" - repo_url: "https://github.com/JuliaCI/julia-buildkite" - - JuliaCI/julia#v1: - # Drop default "registries" directory, so it is not persisted from execution to execution - persist_depot_dirs: packages,artifacts,compiled - version: '1' - - staticfloat/sandbox#v1: - rootfs_url: https://github.com/JuliaCI/rootfs-images/releases/download/v5.7/aws_uploader.x86_64.tar.gz - rootfs_treehash: "0d5ad94ba902eea4d9a7d220b49c144626a102ea" - uid: 1000 - gid: 1000 - - staticfloat/cryptic#v2: - variables: - - AWS_ACCESS_KEY_ID="U2FsdGVkX184v87+NPs3j9r/JoIuOrYt4/Z4wnRdklnY17NP8C8AMZvWYLJfT9t1" - - AWS_SECRET_ACCESS_KEY="U2FsdGVkX1+qptnxR/Mo5jZdH8OQfflRPiQBEhjgZIiTpn8KNCJYh/Cb8xxaUWazlcM9ceOlo0InDubL+J8zdg==" - files: - - .buildkite/secrets/tarball_signing.gpg - timeout_in_minutes: ${TIMEOUT?} - commands: "bash .buildkite/utilities/upload_julia.sh" - agents: - queue: "julia" - # Only run on `sandbox.jl` machines (not `docker`-isolated ones) since we need nestable sandboxing - sandbox_capable: "true" - os: "linux" - env: - # Receive cryptic token from parent job - BUILDKITE_PLUGIN_CRYPTIC_BASE64_SIGNED_JOB_ID_SECRET: ${BUILDKITE_PLUGIN_CRYPTIC_BASE64_SIGNED_JOB_ID_SECRET?} - TRIPLET: "${TRIPLET?}" + - group: "Upload" + steps: + - label: ":linux: upload ${TRIPLET?}" + key: "upload_${TRIPLET?}" + # We only upload to S3 if one of the following criteria are true: + # 1. The branch is `master`. + # 2. The branch is `release-*`. + # 3. The build is a tag build AND the tag is `v*`. + # 4. The pipeline is `julia-buildkite`. + if: (build.branch == "master") || (build.branch =~ /^release-/) || (build.tag =~ /^v/) || (pipeline.slug == "julia-buildkite") + depends_on: + # Wait for the builder to finish + - "build_${TRIPLET?}" + # Wait for the tester to finish + - "test_${TRIPLET?}" + # Prevent multiple pipelines from uploading to S3 simultaneously + # It is okay for two different triplets to upload simultaneously + concurrency: 1 + concurrency_group: 'upload/julialangnightlies/${TRIPLET?}' + plugins: + - JuliaCI/external-buildkite#v1: + version: "./.buildkite-external-version" + repo_url: "https://github.com/JuliaCI/julia-buildkite" + - JuliaCI/julia#v1: + # Drop default "registries" directory, so it is not persisted from execution to execution + persist_depot_dirs: packages,artifacts,compiled + version: '1' + - staticfloat/sandbox#v1: + rootfs_url: https://github.com/JuliaCI/rootfs-images/releases/download/v5.7/aws_uploader.x86_64.tar.gz + rootfs_treehash: "0d5ad94ba902eea4d9a7d220b49c144626a102ea" + uid: 1000 + gid: 1000 + - staticfloat/cryptic#v2: + variables: + - AWS_ACCESS_KEY_ID="U2FsdGVkX184v87+NPs3j9r/JoIuOrYt4/Z4wnRdklnY17NP8C8AMZvWYLJfT9t1" + - AWS_SECRET_ACCESS_KEY="U2FsdGVkX1+qptnxR/Mo5jZdH8OQfflRPiQBEhjgZIiTpn8KNCJYh/Cb8xxaUWazlcM9ceOlo0InDubL+J8zdg==" + files: + - .buildkite/secrets/tarball_signing.gpg + timeout_in_minutes: ${TIMEOUT?} + commands: "bash .buildkite/utilities/upload_julia.sh" + agents: + queue: "julia" + # Only run on `sandbox.jl` machines (not `docker`-isolated ones) since we need nestable sandboxing + sandbox_capable: "true" + os: "linux" + env: + # Receive cryptic token from parent job + BUILDKITE_PLUGIN_CRYPTIC_BASE64_SIGNED_JOB_ID_SECRET: ${BUILDKITE_PLUGIN_CRYPTIC_BASE64_SIGNED_JOB_ID_SECRET?} + TRIPLET: "${TRIPLET?}" diff --git a/pipelines/main/platforms/upload_macos.yml b/pipelines/main/platforms/upload_macos.yml index 3bcb6cd53..1731f5726 100644 --- a/pipelines/main/platforms/upload_macos.yml +++ b/pipelines/main/platforms/upload_macos.yml @@ -1,40 +1,42 @@ steps: - - label: ":macos: upload ${TRIPLET?}" - key: "upload_${TRIPLET?}" - # We only upload to S3 if one of the following criteria are true: - # 1. The branch is `master`. - # 2. The branch is `release-*`. - # 3. The build is a tag build AND the tag is `v*`. - # 4. The pipeline is `julia-buildkite`. - if: (build.branch == "master") || (build.branch =~ /^release-/) || (build.tag =~ /^v/) || (pipeline.slug == "julia-buildkite") - depends_on: - # Wait for the builder to finish - - "build_${TRIPLET?}" - # Wait for the tester to finish - - "test_${TRIPLET?}" - # Prevent multiple pipelines from uploading to S3 simultaneously - # It is okay for two different triplets to upload simultaneously - concurrency: 1 - concurrency_group: 'upload/julialangnightlies/${TRIPLET?}' - plugins: - - JuliaCI/external-buildkite#v1: - version: "./.buildkite-external-version" - repo_url: "https://github.com/JuliaCI/julia-buildkite" - - staticfloat/cryptic#v2: - variables: - - AWS_ACCESS_KEY_ID="U2FsdGVkX184v87+NPs3j9r/JoIuOrYt4/Z4wnRdklnY17NP8C8AMZvWYLJfT9t1" - - AWS_SECRET_ACCESS_KEY="U2FsdGVkX1+qptnxR/Mo5jZdH8OQfflRPiQBEhjgZIiTpn8KNCJYh/Cb8xxaUWazlcM9ceOlo0InDubL+J8zdg==" - files: - - .buildkite/secrets/tarball_signing.gpg - - .buildkite/secrets/macos_codesigning.keychain - timeout_in_minutes: ${TIMEOUT?} - commands: "bash .buildkite/utilities/upload_julia.sh" - agents: - queue: "julia" - # Only run on `sandbox.jl` machines (not `docker`-isolated ones) since we need nestable sandboxing - os: "macos" - arch: "${ARCH}" - env: - # Receive cryptic token from parent job - BUILDKITE_PLUGIN_CRYPTIC_BASE64_SIGNED_JOB_ID_SECRET: ${BUILDKITE_PLUGIN_CRYPTIC_BASE64_SIGNED_JOB_ID_SECRET?} - TRIPLET: "${TRIPLET?}" + - group: "Upload" + steps: + - label: ":macos: upload ${TRIPLET?}" + key: "upload_${TRIPLET?}" + # We only upload to S3 if one of the following criteria are true: + # 1. The branch is `master`. + # 2. The branch is `release-*`. + # 3. The build is a tag build AND the tag is `v*`. + # 4. The pipeline is `julia-buildkite`. + if: (build.branch == "master") || (build.branch =~ /^release-/) || (build.tag =~ /^v/) || (pipeline.slug == "julia-buildkite") + depends_on: + # Wait for the builder to finish + - "build_${TRIPLET?}" + # Wait for the tester to finish + - "test_${TRIPLET?}" + # Prevent multiple pipelines from uploading to S3 simultaneously + # It is okay for two different triplets to upload simultaneously + concurrency: 1 + concurrency_group: 'upload/julialangnightlies/${TRIPLET?}' + plugins: + - JuliaCI/external-buildkite#v1: + version: "./.buildkite-external-version" + repo_url: "https://github.com/JuliaCI/julia-buildkite" + - staticfloat/cryptic#v2: + variables: + - AWS_ACCESS_KEY_ID="U2FsdGVkX184v87+NPs3j9r/JoIuOrYt4/Z4wnRdklnY17NP8C8AMZvWYLJfT9t1" + - AWS_SECRET_ACCESS_KEY="U2FsdGVkX1+qptnxR/Mo5jZdH8OQfflRPiQBEhjgZIiTpn8KNCJYh/Cb8xxaUWazlcM9ceOlo0InDubL+J8zdg==" + files: + - .buildkite/secrets/tarball_signing.gpg + - .buildkite/secrets/macos_codesigning.keychain + timeout_in_minutes: ${TIMEOUT?} + commands: "bash .buildkite/utilities/upload_julia.sh" + agents: + queue: "julia" + # Only run on `sandbox.jl` machines (not `docker`-isolated ones) since we need nestable sandboxing + os: "macos" + arch: "${ARCH}" + env: + # Receive cryptic token from parent job + BUILDKITE_PLUGIN_CRYPTIC_BASE64_SIGNED_JOB_ID_SECRET: ${BUILDKITE_PLUGIN_CRYPTIC_BASE64_SIGNED_JOB_ID_SECRET?} + TRIPLET: "${TRIPLET?}" diff --git a/pipelines/scheduled/0_webui.yml b/pipelines/scheduled/0_webui.yml index c90cf937e..8ece30b51 100644 --- a/pipelines/scheduled/0_webui.yml +++ b/pipelines/scheduled/0_webui.yml @@ -2,7 +2,7 @@ # It is purely for keeping track of the changes we make to the webUI configuration; modifying this file has no effect. # We use the `cryptic` buildkite plugin to provide secrets management, which requires some integration into the WebUI's steps. steps: - - label: ":unlock: Unlock secrets, launch pipelines" + - label: "Unlock secrets, launch pipelines" plugins: - staticfloat/cryptic: # Our list of pipelines that should be launched (but don't require a signature) diff --git a/pipelines/scheduled/coverage/coverage_linux64.yml b/pipelines/scheduled/coverage/coverage_linux64.yml index 4d011cec5..e9fb8182a 100644 --- a/pipelines/scheduled/coverage/coverage_linux64.yml +++ b/pipelines/scheduled/coverage/coverage_linux64.yml @@ -1,5 +1,5 @@ steps: - - label: ":unlock: :coverage: Run coverage test" + - label: "Coverage" # We must accept the signed job id secret in order to propagate secrets env: BUILDKITE_PLUGIN_CRYPTIC_BASE64_SIGNED_JOB_ID_SECRET: ${BUILDKITE_PLUGIN_CRYPTIC_BASE64_SIGNED_JOB_ID_SECRET?} diff --git a/pipelines/scheduled/coverage/coverage_linux64.yml.signature b/pipelines/scheduled/coverage/coverage_linux64.yml.signature index f46fcc942..f7d769580 100644 Binary files a/pipelines/scheduled/coverage/coverage_linux64.yml.signature and b/pipelines/scheduled/coverage/coverage_linux64.yml.signature differ diff --git a/pipelines/scheduled/launch_unsigned_jobs.yml b/pipelines/scheduled/launch_unsigned_jobs.yml index 2ebf1bbdd..0156058b1 100644 --- a/pipelines/scheduled/launch_unsigned_jobs.yml +++ b/pipelines/scheduled/launch_unsigned_jobs.yml @@ -1,5 +1,5 @@ steps: - - label: ":buildkite: Launch unsigned jobs" + - label: "Launch unsigned jobs" commands: | # Launch all of the `USE_BINARYBUILDER=0` jobs. bash .buildkite/utilities/arches_pipeline_upload.sh .buildkite/pipelines/scheduled/no_bb/no_bb_package_linux.arches .buildkite/pipelines/main/platforms/package_linux.yml