From 1fb2058f81e483f8a2b54cebdae96ead135aed8a Mon Sep 17 00:00:00 2001 From: aurel-fr <105201452+aurel-fr@users.noreply.github.com> Date: Wed, 19 Nov 2025 20:34:02 -0800 Subject: [PATCH 1/5] ci: scale up runners --- .github/workflows/ci.yml | 8 +++--- .github/workflows/codeql.yml | 38 +++++++++++++------------- .github/workflows/initiate-release.yml | 8 +++--- .github/workflows/publish-release.yml | 6 ++-- .github/workflows/relyance-sci.yml | 2 +- .github/workflows/validate-pr.yml | 4 +-- 6 files changed, 33 insertions(+), 33 deletions(-) diff --git a/.github/workflows/ci.yml b/.github/workflows/ci.yml index 9c072c21..ca23a21c 100644 --- a/.github/workflows/ci.yml +++ b/.github/workflows/ci.yml @@ -11,7 +11,7 @@ env: jobs: lint: name: Format, Clippy & Build - runs-on: ubuntu-latest + runs-on: arc-4xlarge-amd64-runner permissions: contents: read @@ -70,7 +70,7 @@ jobs: test: name: Tests - runs-on: ubuntu-latest + runs-on: arc-4xlarge-amd64-runner permissions: contents: read @@ -97,7 +97,7 @@ jobs: deny: name: Cargo deny - runs-on: ubuntu-latest + runs-on: arc-2xlarge-amd64-runner permissions: contents: read strategy: @@ -119,7 +119,7 @@ jobs: kotlin-build-and-test: name: Build and Test Kotlin Bindings - runs-on: ubuntu-latest + runs-on: arc-4xlarge-amd64-runner permissions: contents: read diff --git a/.github/workflows/codeql.yml b/.github/workflows/codeql.yml index 0c15953b..745df52f 100644 --- a/.github/workflows/codeql.yml +++ b/.github/workflows/codeql.yml @@ -8,36 +8,36 @@ permissions: on: push: - branches: [ "main" ] + branches: ["main"] pull_request: - branches: [ "main" ] + branches: ["main"] schedule: - - cron: '23 21 * * 0' + - cron: "23 21 * * 0" jobs: analyze: name: Analyze (${{ matrix.language }}) - runs-on: ${{ (matrix.language == 'swift' && 'macos-latest') || 'ubuntu-latest' }} + runs-on: ${{ (matrix.language == 'swift' && 'macos-latest') || 'arc-2xlarge-amd64-runner' }} strategy: fail-fast: false matrix: include: - - language: actions - build-mode: none - - language: rust - build-mode: none + - language: actions + build-mode: none + - language: rust + build-mode: none # TODO: Review adding Swift and Kotlin languages steps: - - name: Checkout repository - uses: actions/checkout@v4 - - name: Initialize CodeQL - uses: github/codeql-action/init@v3 - with: - languages: ${{ matrix.language }} - build-mode: ${{ matrix.build-mode }} - - name: Perform CodeQL Analysis - uses: github/codeql-action/analyze@v3 - with: - category: "/language:${{matrix.language}}" \ No newline at end of file + - name: Checkout repository + uses: actions/checkout@v4 + - name: Initialize CodeQL + uses: github/codeql-action/init@v3 + with: + languages: ${{ matrix.language }} + build-mode: ${{ matrix.build-mode }} + - name: Perform CodeQL Analysis + uses: github/codeql-action/analyze@v3 + with: + category: "/language:${{matrix.language}}" diff --git a/.github/workflows/initiate-release.yml b/.github/workflows/initiate-release.yml index 53591d58..a06f4e4f 100644 --- a/.github/workflows/initiate-release.yml +++ b/.github/workflows/initiate-release.yml @@ -15,7 +15,7 @@ on: jobs: initiate-release: - runs-on: ubuntu-latest + runs-on: arc-4xlarge-amd64-runner # running releases is only allowed on main if: github.ref == 'refs/heads/main' @@ -107,7 +107,7 @@ jobs: env: NEW_VERSION: ${{ steps.version.outputs.new_version }} RELEASE_NOTES: ${{ steps.release_notes.outputs.release_notes }} - run: | + run: | # Check if version already exists in changelog if grep -q "## \[$NEW_VERSION\]" CHANGELOG.md; then echo "Version $NEW_VERSION already exists in CHANGELOG.md, skipping update" @@ -120,10 +120,10 @@ jobs: echo "" >> temp_changelog.md echo "$RELEASE_NOTES" >> temp_changelog.md echo "" >> temp_changelog.md - + # Insert the new changelog entry after the header awk 'NR==1{print; system("cat temp_changelog.md"); next} 1' CHANGELOG.md > new_changelog.md - + mv new_changelog.md CHANGELOG.md rm temp_changelog.md diff --git a/.github/workflows/publish-release.yml b/.github/workflows/publish-release.yml index ae7501ed..84346db5 100644 --- a/.github/workflows/publish-release.yml +++ b/.github/workflows/publish-release.yml @@ -9,7 +9,7 @@ on: jobs: pre-release-checks: if: github.event.pull_request.merged == true && contains(github.event.pull_request.labels.*.name, 'release') - runs-on: ubuntu-latest + runs-on: arc-4xlarge-amd64-runner permissions: contents: read @@ -172,7 +172,7 @@ jobs: publish-kotlin: name: Publish Kotlin - runs-on: ubuntu-latest + runs-on: arc-4xlarge-amd64-runner needs: [pre-release-checks, prepare-kotlin] permissions: packages: write @@ -228,7 +228,7 @@ jobs: create-github-release: needs: [pre-release-checks, publish-kotlin, publish-swift] - runs-on: ubuntu-latest + runs-on: arc-4xlarge-amd64-runner permissions: contents: write diff --git a/.github/workflows/relyance-sci.yml b/.github/workflows/relyance-sci.yml index c503fe85..26943502 100644 --- a/.github/workflows/relyance-sci.yml +++ b/.github/workflows/relyance-sci.yml @@ -11,7 +11,7 @@ permissions: jobs: execute-relyance-sci: name: Relyance SCI Job - runs-on: ubuntu-latest + runs-on: arc-4xlarge-amd64-runner permissions: contents: read diff --git a/.github/workflows/validate-pr.yml b/.github/workflows/validate-pr.yml index 13ab6927..8f751978 100644 --- a/.github/workflows/validate-pr.yml +++ b/.github/workflows/validate-pr.yml @@ -12,10 +12,10 @@ on: jobs: main: name: Validate PR title - runs-on: ubuntu-latest + runs-on: arc-4xlarge-amd64-runner permissions: pull-requests: read steps: - uses: amannn/action-semantic-pull-request@v5 env: - GITHUB_TOKEN: ${{ github.token }} # granting access only to read pull requests \ No newline at end of file + GITHUB_TOKEN: ${{ github.token }} # granting access only to read pull requests From fd2492f777e9ebc1001e8dbe8c28470707a0bfbc Mon Sep 17 00:00:00 2001 From: aurel-fr <105201452+aurel-fr@users.noreply.github.com> Date: Wed, 19 Nov 2025 20:40:53 -0800 Subject: [PATCH 2/5] ci: macos --- .github/workflows/ci.yml | 2 +- .github/workflows/codeql.yml | 2 +- 2 files changed, 2 insertions(+), 2 deletions(-) diff --git a/.github/workflows/ci.yml b/.github/workflows/ci.yml index ca23a21c..77ed65bd 100644 --- a/.github/workflows/ci.yml +++ b/.github/workflows/ci.yml @@ -39,7 +39,7 @@ jobs: swift-build-and-test: name: Build and Test Swift Bindings - runs-on: macos-14 + runs-on: macos-14-xlarge permissions: contents: read diff --git a/.github/workflows/codeql.yml b/.github/workflows/codeql.yml index 745df52f..4efec6ab 100644 --- a/.github/workflows/codeql.yml +++ b/.github/workflows/codeql.yml @@ -17,7 +17,7 @@ on: jobs: analyze: name: Analyze (${{ matrix.language }}) - runs-on: ${{ (matrix.language == 'swift' && 'macos-latest') || 'arc-2xlarge-amd64-runner' }} + runs-on: ${{ (matrix.language == 'swift' && 'macos-15-xlarge') || 'arc-2xlarge-amd64-runner' }} strategy: fail-fast: false matrix: From 9945bd0cdee4715d8fc7474f1eeec25269af55b5 Mon Sep 17 00:00:00 2001 From: aurel-fr <105201452+aurel-fr@users.noreply.github.com> Date: Wed, 19 Nov 2025 20:41:45 -0800 Subject: [PATCH 3/5] ci: macos --- .github/workflows/codeql.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/codeql.yml b/.github/workflows/codeql.yml index 4efec6ab..a178e555 100644 --- a/.github/workflows/codeql.yml +++ b/.github/workflows/codeql.yml @@ -17,7 +17,7 @@ on: jobs: analyze: name: Analyze (${{ matrix.language }}) - runs-on: ${{ (matrix.language == 'swift' && 'macos-15-xlarge') || 'arc-2xlarge-amd64-runner' }} + runs-on: ${{ (matrix.language == 'swift' && 'macos-latest-xlarge') || 'arc-2xlarge-amd64-runner' }} strategy: fail-fast: false matrix: From 2a0e5e906d1c1763d095803fd9163d1e41615bc6 Mon Sep 17 00:00:00 2001 From: aurel-fr <105201452+aurel-fr@users.noreply.github.com> Date: Wed, 19 Nov 2025 20:46:07 -0800 Subject: [PATCH 4/5] ci: arm runners --- .github/workflows/ci.yml | 8 ++++---- .github/workflows/codeql.yml | 2 +- .github/workflows/initiate-release.yml | 2 +- .github/workflows/publish-release.yml | 6 +++--- .github/workflows/relyance-sci.yml | 2 +- .github/workflows/validate-pr.yml | 2 +- 6 files changed, 11 insertions(+), 11 deletions(-) diff --git a/.github/workflows/ci.yml b/.github/workflows/ci.yml index 77ed65bd..01943b76 100644 --- a/.github/workflows/ci.yml +++ b/.github/workflows/ci.yml @@ -11,7 +11,7 @@ env: jobs: lint: name: Format, Clippy & Build - runs-on: arc-4xlarge-amd64-runner + runs-on: arm64-ubuntu-22.04-16core permissions: contents: read @@ -70,7 +70,7 @@ jobs: test: name: Tests - runs-on: arc-4xlarge-amd64-runner + runs-on: arm64-ubuntu-22.04-16core permissions: contents: read @@ -97,7 +97,7 @@ jobs: deny: name: Cargo deny - runs-on: arc-2xlarge-amd64-runner + runs-on: arm64-ubuntu-22.04-16core permissions: contents: read strategy: @@ -119,7 +119,7 @@ jobs: kotlin-build-and-test: name: Build and Test Kotlin Bindings - runs-on: arc-4xlarge-amd64-runner + runs-on: arm64-ubuntu-22.04-16core permissions: contents: read diff --git a/.github/workflows/codeql.yml b/.github/workflows/codeql.yml index a178e555..ae967dfc 100644 --- a/.github/workflows/codeql.yml +++ b/.github/workflows/codeql.yml @@ -17,7 +17,7 @@ on: jobs: analyze: name: Analyze (${{ matrix.language }}) - runs-on: ${{ (matrix.language == 'swift' && 'macos-latest-xlarge') || 'arc-2xlarge-amd64-runner' }} + runs-on: ${{ (matrix.language == 'swift' && 'macos-latest-xlarge') || 'arm64-ubuntu-22.04-16core' }} strategy: fail-fast: false matrix: diff --git a/.github/workflows/initiate-release.yml b/.github/workflows/initiate-release.yml index a06f4e4f..0346b85d 100644 --- a/.github/workflows/initiate-release.yml +++ b/.github/workflows/initiate-release.yml @@ -15,7 +15,7 @@ on: jobs: initiate-release: - runs-on: arc-4xlarge-amd64-runner + runs-on: arm64-ubuntu-22.04-16core # running releases is only allowed on main if: github.ref == 'refs/heads/main' diff --git a/.github/workflows/publish-release.yml b/.github/workflows/publish-release.yml index 84346db5..89887d75 100644 --- a/.github/workflows/publish-release.yml +++ b/.github/workflows/publish-release.yml @@ -9,7 +9,7 @@ on: jobs: pre-release-checks: if: github.event.pull_request.merged == true && contains(github.event.pull_request.labels.*.name, 'release') - runs-on: arc-4xlarge-amd64-runner + runs-on: arm64-ubuntu-22.04-16core permissions: contents: read @@ -172,7 +172,7 @@ jobs: publish-kotlin: name: Publish Kotlin - runs-on: arc-4xlarge-amd64-runner + runs-on: arm64-ubuntu-22.04-16core needs: [pre-release-checks, prepare-kotlin] permissions: packages: write @@ -228,7 +228,7 @@ jobs: create-github-release: needs: [pre-release-checks, publish-kotlin, publish-swift] - runs-on: arc-4xlarge-amd64-runner + runs-on: arm64-ubuntu-22.04-16core permissions: contents: write diff --git a/.github/workflows/relyance-sci.yml b/.github/workflows/relyance-sci.yml index 26943502..314357c3 100644 --- a/.github/workflows/relyance-sci.yml +++ b/.github/workflows/relyance-sci.yml @@ -11,7 +11,7 @@ permissions: jobs: execute-relyance-sci: name: Relyance SCI Job - runs-on: arc-4xlarge-amd64-runner + runs-on: arm64-ubuntu-22.04-16core permissions: contents: read diff --git a/.github/workflows/validate-pr.yml b/.github/workflows/validate-pr.yml index 8f751978..c7c8192c 100644 --- a/.github/workflows/validate-pr.yml +++ b/.github/workflows/validate-pr.yml @@ -12,7 +12,7 @@ on: jobs: main: name: Validate PR title - runs-on: arc-4xlarge-amd64-runner + runs-on: arm64-ubuntu-22.04-16core permissions: pull-requests: read steps: From 4688eaba2663930aa25e8014f8907c7c07291c3f Mon Sep 17 00:00:00 2001 From: aurel-fr <105201452+aurel-fr@users.noreply.github.com> Date: Wed, 19 Nov 2025 20:52:13 -0800 Subject: [PATCH 5/5] ci: remove arm --- .github/workflows/ci.yml | 8 ++++---- .github/workflows/codeql.yml | 2 +- .github/workflows/initiate-release.yml | 3 +-- .github/workflows/publish-release.yml | 6 +++--- .github/workflows/relyance-sci.yml | 2 +- .github/workflows/validate-pr.yml | 2 +- 6 files changed, 11 insertions(+), 12 deletions(-) diff --git a/.github/workflows/ci.yml b/.github/workflows/ci.yml index 01943b76..1d081079 100644 --- a/.github/workflows/ci.yml +++ b/.github/workflows/ci.yml @@ -11,7 +11,7 @@ env: jobs: lint: name: Format, Clippy & Build - runs-on: arm64-ubuntu-22.04-16core + runs-on: ubuntu-22.04-16core permissions: contents: read @@ -70,7 +70,7 @@ jobs: test: name: Tests - runs-on: arm64-ubuntu-22.04-16core + runs-on: ubuntu-22.04-16core permissions: contents: read @@ -97,7 +97,7 @@ jobs: deny: name: Cargo deny - runs-on: arm64-ubuntu-22.04-16core + runs-on: ubuntu-22.04-16core permissions: contents: read strategy: @@ -119,7 +119,7 @@ jobs: kotlin-build-and-test: name: Build and Test Kotlin Bindings - runs-on: arm64-ubuntu-22.04-16core + runs-on: ubuntu-22.04-16core permissions: contents: read diff --git a/.github/workflows/codeql.yml b/.github/workflows/codeql.yml index ae967dfc..23910556 100644 --- a/.github/workflows/codeql.yml +++ b/.github/workflows/codeql.yml @@ -17,7 +17,7 @@ on: jobs: analyze: name: Analyze (${{ matrix.language }}) - runs-on: ${{ (matrix.language == 'swift' && 'macos-latest-xlarge') || 'arm64-ubuntu-22.04-16core' }} + runs-on: ${{ (matrix.language == 'swift' && 'macos-latest-xlarge') || 'ubuntu-22.04-16core' }} strategy: fail-fast: false matrix: diff --git a/.github/workflows/initiate-release.yml b/.github/workflows/initiate-release.yml index 0346b85d..c1c98aaf 100644 --- a/.github/workflows/initiate-release.yml +++ b/.github/workflows/initiate-release.yml @@ -1,5 +1,4 @@ name: Initiate Release -description: "Initiates a release of the library by creating a PR that bumps the version." on: workflow_dispatch: @@ -15,7 +14,7 @@ on: jobs: initiate-release: - runs-on: arm64-ubuntu-22.04-16core + runs-on: ubuntu-22.04-16core # running releases is only allowed on main if: github.ref == 'refs/heads/main' diff --git a/.github/workflows/publish-release.yml b/.github/workflows/publish-release.yml index 89887d75..f1a0bb3e 100644 --- a/.github/workflows/publish-release.yml +++ b/.github/workflows/publish-release.yml @@ -9,7 +9,7 @@ on: jobs: pre-release-checks: if: github.event.pull_request.merged == true && contains(github.event.pull_request.labels.*.name, 'release') - runs-on: arm64-ubuntu-22.04-16core + runs-on: ubuntu-22.04-16core permissions: contents: read @@ -172,7 +172,7 @@ jobs: publish-kotlin: name: Publish Kotlin - runs-on: arm64-ubuntu-22.04-16core + runs-on: ubuntu-22.04-16core needs: [pre-release-checks, prepare-kotlin] permissions: packages: write @@ -228,7 +228,7 @@ jobs: create-github-release: needs: [pre-release-checks, publish-kotlin, publish-swift] - runs-on: arm64-ubuntu-22.04-16core + runs-on: ubuntu-22.04-16core permissions: contents: write diff --git a/.github/workflows/relyance-sci.yml b/.github/workflows/relyance-sci.yml index 314357c3..07152e99 100644 --- a/.github/workflows/relyance-sci.yml +++ b/.github/workflows/relyance-sci.yml @@ -11,7 +11,7 @@ permissions: jobs: execute-relyance-sci: name: Relyance SCI Job - runs-on: arm64-ubuntu-22.04-16core + runs-on: ubuntu-22.04-16core permissions: contents: read diff --git a/.github/workflows/validate-pr.yml b/.github/workflows/validate-pr.yml index c7c8192c..fbf2d507 100644 --- a/.github/workflows/validate-pr.yml +++ b/.github/workflows/validate-pr.yml @@ -12,7 +12,7 @@ on: jobs: main: name: Validate PR title - runs-on: arm64-ubuntu-22.04-16core + runs-on: ubuntu-22.04-16core permissions: pull-requests: read steps: