Scriptworker

---------------------

.. _added-36:

Added
~~~~~

- added a restriction on a.m.o. production scopes.
- added ``prebuilt_docker_image_task_types``. These are the task types
that allow non-artifact docker images; if ``None``, all task types
are allowed.
- added ``get_in_tree_template``, ``get_action_context_and_template``,
``get_jsone_context_and_template`` to help support new action hooks.
- added ``verify_repo_matches_url`` to stop using ``.startswith()`` to
compare urls
- added ``REPO_SCOPE_REGEX`` to allow us to find the ``repo_scope`` in
a task’s scopes.
- added ``get_repo_scope`` to return the ``repo_scope`` in a task’s
scopes (or ``None``)
- added a ``test/data/cotv3`` dir for action hook test data.

.. _changed-33:

Changed
~~~~~~~

- set ``cot_version`` to 3.
- set ``min_cot_version`` to 2.
- we now require cot artifacts in ``verify_docker_image_sha``.
- we no longer check docker image shas against an allowlist; they
either match chain of trust artifact shas, or they’re a task type
that allows prebuilt docker images. If these are defined in-tree, we
trace the request to the tree, so these should be as trustable as the
tree in question.
- we no longer allow for ignoring decision tasks’ ``taskGroupId``\ s.
If they differ from the ``taskId``, we follow the chain back.
- we no longer skip ``verify_docker_worker_task`` for ``mobile``
``cot_product``; but we do allow for prebuilt docker images on all
task types.
- ``get_source_url`` now throws a ``CoTError`` if both the source url
and repo are defined, and the source url doesn’t match the repo.
- quieted the test output significantly.
- default test verbosity is toggled on by the
``SCRIPTWORKER_VERBOSE_TESTS`` env var.
- by default, tests now run concurrently for faster results. To allow
this, we no longer close the event loop anywhere.

.. _fixed-30:

Fixed
~~~~~

- we now log the exception at bad git tag signature verification.

.. _removed-14:

Removed
~~~~~~~

- removed cotv1 support
- removed ``docker_image_allowlists``
- removed ``gecko-decision`` from the decision ``workerType``\ s
- removed ``ACTION_MACH_COMMANDS`` and ``DECISION_MACH_COMMANDS``
- removed “fuzzy matching” task definitions in ``task-graph.json``.
With json-e enabled actions, we should be able to match the
``taskId`` exactly.
- removed ``verify_decision_command``; rebuilding the task definition
via json-e is more precise.
- removed ``get_jsone_template`` in favor of the other, more specific
template functions.

.. _fixed-31:

Fixed
~~~~~

- added ``.pytest_cache`` to ``.gitignore``

.. _section-68:

---------------------

.. _added-37:

Added
~~~~~

- added py37 testing. This is currently broken due to ``ldna_ssl`` and
``PyYAML``; marked this test in ``allow_failures``.
- Support for ``mobile`` projects and more precisely Firefox Focus

.. _section-69:

---------------------

.. _changed-34:

Changed
~~~~~~~

- updated docs to reflect python 3.6.5 update
- updated to add aiohttp 3 support. aiohttp <3 is likely busted.
- stopped closing the event loop.

.. _removed-15:

Removed
~~~~~~~

- dropped python 3.5 support.

.. _section-70:

---------------------

.. _fixed-32:

Fixed
~~~~~

- find try: in any line of an hg push comment, and strip any preceding
characters

.. _section-71:

---------------------

.. _fixed-33:

Fixed
~~~~~

- restrict compariston to the first line of hg push comments for try

.. _section-72:

---------------------

.. _added-38:

Added
~~~~~

- added mozilla-esr60 to restricted branches

.. _changed-35:

Changed
~~~~~~~

- changed ``retry_async`` logging to be more informative

.. _section-73: