-
Notifications
You must be signed in to change notification settings - Fork 1.9k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Prioritize snapshot builds in distribution downloader #8731
Prioritize snapshot builds in distribution downloader #8731
Conversation
In the Security plugin's BWC tests there have been an issue with stale artifacts, when troubleshooting we noticed that a release candidate for OpenSearch 3.0.0 was being picked up in priority before the latest snapshot build. This was causing build failures preventing our tests from running. - Related opensearch-project/security#3020 Signed-off-by: Peter Nied <[email protected]>
@cwperks I know you are working on the source of these failures / stale artifacts, this might resolve some of those issues. |
Gradle Check (Jenkins) Run Completed with:
|
Codecov Report
@@ Coverage Diff @@
## main #8731 +/- ##
============================================
- Coverage 71.02% 70.81% -0.21%
+ Complexity 57229 57140 -89
============================================
Files 4771 4771
Lines 270323 270323
Branches 39509 39509
============================================
- Hits 192007 191442 -565
- Misses 62140 62773 +633
+ Partials 16176 16108 -68
|
Isn't that by design because a released version is better than the latest snapshot? |
@dblock I don't think its so easily clarified, we've got 'release versions' of 3.0.0 already according to the logic of this script. I'd rather have an snapshot of a patch release than the latest official release, as that likely has resolutions to bugs / CVEs in it. Is there use in letting the consumer decide between releases, latest minor, latest patched, and snapshots? |
@peternied do we have a release candidate for 3.0? There shouldn't be one. [1] Trying to understand the failures you were seeing, was it downloading an older snapshot of OpenSearch 3.0.0?
SNAPSHOT qualifier will always download the latest in the repo. Same with releases, we dont have a feature that supports latest minor/patched as the consumers are anyway tightly coupled. We could definitely make this a feature request. [1] https://aws.oss.sonatype.org/content/repositories/releases/org/opensearch/opensearch/ |
It looks like its unblocked, see [1]. This change doesn't seem worth iterating on based on the feedback - we will need to add more logging to help figure out what version we did get and from where. |
@saratvemulapalli Thank you for the context. The problem was that the bwc tests in the security plugin relied on release artifacts and needed to be updated to use SNAPSHOT artifacts so that the tests ran with the most recent changes from core. |
Description
In the Security plugin's BWC tests there have been an issue with stale artifacts, when troubleshooting we noticed that a release candidate for OpenSearch 3.0.0 was being picked up in priority before the latest snapshot build. This was causing build failures preventing our tests from running.
Related Issues
Caused by: java.lang.ClassNotFoundException: org.opensearch.core.common.settings.SecureString
security#3020Check List
New functionality includes testing.All tests passNew functionality has been documented.New functionality has javadoc addedBy submitting this pull request, I confirm that my contribution is made under the terms of the Apache 2.0 license.
For more information on following Developer Certificate of Origin and signing off your commits, please check here.