fix: Remove build golang lambda #535
Conversation
Signed-off-by: github-actions <[email protected]>
wchaws
changed the title
wchaws
changed the title
wchaws
changed the title
Signed-off-by: github-actions <[email protected]>
wchaws
changed the title
|
Starting to look into this PR. Because I'm not familiar with this L2, could you please add some details to help me understand the change?
I see Python is added and Go is removed. Is there a reason for that? And are you removing all Go code from the repo? |
| ARCH=x86_64 # or arm64, x86_64, armv6, i386, s390x | ||
| VERSION=v0.19.0 | ||
|
|
||
| curl -sL "https://github.com/google/go-containerregistry/releases/download/${VERSION}/go-containerregistry_${OS}_${ARCH}.tar.gz" > go-containerregistry.tar.gz |
There was a problem hiding this comment.
Does this script run on customer's machine?
There was a problem hiding this comment.
Correct me if I'm wrong: this shell script will run whenever customers run synth().
Instead of downloading it every time when customers use the construct, can we do this part in our release process and publish the layer.zip. So they don't need to connect to Github which has availability risk.
| ## Sample: [test/example.ecr-deployment.ts](./test/example.ecr-deployment.ts) | ||
|
|
||
| ```shell | ||
| # Generate crane lambda layer firstly. | ||
| ./layer/build.sh |
There was a problem hiding this comment.
This section needs some clarification that these instructions only apply if you're developing on the repository, not if you're a user of the construct.
README.md is typically consumer-targeted, and the section title says "Sample", so it should (mostly) only contain instructions for consumers.
These instructions would make more sense in CONTRIBUTING.md in a section title "How to run tests".
If you want to keep them here, clearly label the instructions as intended for developers, not for consumers.
| To support a new docker image source(like docker tarball in s3), you need to implement [image transport interface](https://github.com/containers/image/blob/master/types/types.go). You could take a look at [docker-archive](https://github.com/containers/image/blob/ccb87a8d0f45cf28846e307eb0ec2b9d38a458c2/docker/archive/transport.go) transport for a good start. | ||
|
|
||
| To test the `lambda` folder, `make test`. | ||
| The underlying implementation depends on the https://github.com/google/go-containerregistry. |
| import re | ||
| import boto3 | ||
| import base64 | ||
| import subprocess | ||
| import logging |
There was a problem hiding this comment.
I really like making 2 distinct changes in a single PR here.
The problem was: the Lambda code is downloaded at synth time.
The expected solution was: the Lambda code is built at release time and bundled into the NPM package.
You are doing that, and also replacing the code in the Lambda layer with a downloaded binary and a Python wrapper at the same time.
This seems to me like it doesn't appreciably simplify the solution to the immediate problem, as well as introduces another layer of risk that I'd rather avoid. The proposed layer code change should be submitted as a separate PR.
| resourceType: 'Custom::CDKBucketDeployment', | ||
| properties: { | ||
| Time: Date.now().toString(), |
There was a problem hiding this comment.
This behavior can/should probably be triggered more intelligently. For example, by examining whether or not a tag is supplied, or adding a triggerEveryDeployment?: boolean/mutableSourceUri?: boolean property.
And in any case, functionality changes should not be part of the PR whose sole purpose it is to make the package behave more reliably.
| /** | ||
| * Image to use to build Golang lambda for custom resource, if download fails or is not wanted. | ||
| * | ||
| * Might be needed for local build if all images need to come from own registry. | ||
| * | ||
| * Note that image should use yum as a package manager and have golang available. | ||
| * | ||
| * @default public.ecr.aws/sam/build-go1.x:latest | ||
| */ | ||
| readonly buildImage?: string; |
There was a problem hiding this comment.
For maximum user impact, it would be better to leave this parameter in place, and to not bump the Major Version. That way, all users currently using the affected version can transparently upgrade to a fixed version. Ignore the property if supplied and report a warning.
Then, in a future Major Version you can remove this parameter, to have a correct API contract.
Fixes #222
Test Cases
Test project can be found at https://github.com/cdklabs/cdk-ecr-deployment/blob/dev/test/example.ecr-deployment.ts.
Instructions can be found at https://github.com/cdklabs/cdk-ecr-deployment/tree/dev?tab=readme-ov-file#sample-testexampleecr-deploymentts
1. Copy from local cdk docker image asset to ECR repo.
Prerequisite:
2. Copy from a ECR repo to another ECR repo.
Prerequisite:
3. Copy from docker registry to ECR repo.
4. Copy from private docker registry to ECR repo.
Prerequisite:
<username>:<password>.5. Regional test
Select some regions to test if it's able to work