Taskcluster

WORKER-DEPLOYERS

▶ [patch] [6530](https://github.com/taskcluster/taskcluster/issues/6530)
Workers deployed in GCP as spot instances or preemptible VMs now
handle instance termination gracefully.

GENERAL

▶ [minor] [6528](https://github.com/taskcluster/taskcluster/issues/6528)
Github webhook handler supports recommended `X-Hub-Signature-256` verification.
All verification failures are being reported to the sentry additionally.

▶ [patch]
Replaces slow db query to fetch check run build status with a faster one, which is used in background status update handlers.

▶ [patch]
Upgrades to go1.21.1

USERS

▶ [patch] [6521](https://github.com/taskcluster/taskcluster/issues/6521)
Generic Worker now outputs a warning in the task log if a Docker Worker payload is supplied, together with the
d2g-converted task definition, in order to help users migrate their tasks to native Generic Worker format.

OTHER

▶ Additional change not described here: [6513](https://github.com/taskcluster/taskcluster/issues/6513).

Automated Package Updates

<details>
<summary>7 Dependabot updates</summary>

* build(deps-dev): bump the deps group (1a1e30ce3)
* build(deps-dev): bump the deps-dev group (9f2491c20)
* build(deps): bump actions/checkout from 3 to 4 (487c1c0de)
* build(deps-dev): bump babel/core in /clients/client-web (2af04e02f)
* build(deps): bump taskcluster from 54.4.1 to 55.0.0 in /taskcluster (6421f4f8c)
* build(deps-dev): bump chai from 4.3.7 to 4.3.8 in /clients/client-web (c5cd0f576)
* build(deps-dev): bump eslint in /clients/client-web (8f82a9e90)

</details>

DEPLOYERS

▶ [minor] [2942](https://github.com/taskcluster/taskcluster/issues/2942)
The new `queue.maxTaskDeadlineDays` Helm configuration parameter controls the maximum value allowed for task deadlines. The default is 5 days, matching the previous hard-coded setting.

USERS

▶ [MAJOR] [6117](https://github.com/taskcluster/taskcluster/issues/6117)
`workerManager.getWorker` returns worker even if it is quarantined and expired.
This is to avoid confusion in the UI when a worker is linked in UI, still exists in database, but page returns `404`.

Automated Package Updates

<details>
<summary>1 Dependabot/Renovate updates</summary>

* build(deps): bump apollo-server-core from 3.12.0 to 3.12.1 (74b091287)

</details>

USERS

▶ [minor] [5995](https://github.com/taskcluster/taskcluster/issues/5995)
Generic Worker: Adds `task.payload.feature.loopbackAudio` for loopback audio device support on Linux.

The `snd-aloop` kernel module must be installed on the host system for this feature to work, although it does not _need_ to be loaded. Generic Worker loads the module with `modprobe` and generates the virtual audio device with a `snd-aloop` command. Under the multiuser engine, it also manages file ownership of the device with `chown` to ensure that only tasks with suitable scopes have read/write access to the virtual device.

For tasks that enable the feature, the virtual audio device will be found at `/dev/snd`. Devices inside that directory will take the form `/dev/snd/controlC<DEVICE_NUMBER>`, `/dev/snd/pcmC<DEVICE_NUMBER>D0c`, `/dev/snd/pcmC<DEVICE_NUMBER>D0p`, `/dev/snd/pcmC<DEVICE_NUMBER>D1c`, and `/dev/snd/pcmC<DEVICE_NUMBER>D1p`, where `<DEVICE_NUMBER>` is an integer between 0 and 31, inclusive. The Generic Worker config setting `loopbackAudioDeviceNumber` may be used to change the device number in case the default value (`16`) conflicts with another audio device on the worker. Future releases of Generic Worker may provide the capability of having more than one virtual audio device; currently only one virtual audio device is supported.

▶ [patch] [6481](https://github.com/taskcluster/taskcluster/issues/6481)
Allow git SSH urls in `metadata.source`.

▶ [patch] [6476](https://github.com/taskcluster/taskcluster/issues/6476)
Generic Worker now checks the Index to see if there is a new version of an Indexed Artifact available. If there isn't, it is fine to use its cached copy, but if there is, it updates its cache.

▶ [patch]
Generic Worker: If a Docker Worker payload is received, the resulting, d2g-translated Generic Worker payload will be logged out to the user.

▶ [patch] [6438](https://github.com/taskcluster/taskcluster/issues/6438)
`dependencies` are no longer removed from the task definition when you `Edit` or `Retrigger` a task.

DEVELOPERS

▶ [minor] [6269](https://github.com/taskcluster/taskcluster/issues/6269)
Generic Worker now provides configuration property `maxTaskRunTime` as an upper bound for task payload property `maxRunTime`. Tasks with `maxRunTime` exceeding this value will be resolved as `exception/malformed-payload`.

OTHER

▶ Additional changes not described here: [6482](https://github.com/taskcluster/taskcluster/issues/6482), [#6484](https://github.com/taskcluster/taskcluster/issues/6484).

Automated Package Updates

<details>
<summary>3 Dependabot/Renovate updates</summary>

* build(deps): bump taskcluster-taskgraph in /taskcluster (172ce2df5)
* build(deps): bump protobufjs from 6.11.3 to 6.11.4 (328acc638)
* build(deps): bump slugid from 3.2.0 to 4.0.0 in /clients/client (22eb08ae4)

</details>

GENERAL

▶ [patch]
Upgrades go to 1.21.0 and node to 18.17.1

USERS

▶ [patch] [6440](https://github.com/taskcluster/taskcluster/issues/6440)
Generic Worker now allocates a pseudo tty when running Docker Worker tasks, to
emulate Docker Worker behavior. Previously it did not allocate a tty, which
could result in e.g. output not being colored.

OTHER

▶ Additional changes not described here: [6400](https://github.com/taskcluster/taskcluster/issues/6400), [#6414](https://github.com/taskcluster/taskcluster/issues/6414), [#6442](https://github.com/taskcluster/taskcluster/issues/6442).

Automated Package Updates

<details>
<summary>11 Dependabot/Renovate updates</summary>

* build(deps-dev): bump eslint in /clients/client-web (7b132ce69)
* build(deps-dev): bump zen-observable from 0.8.15 to 0.10.0 (b6098fade)
* build(deps): bump github.com/iancoleman/strcase from 0.2.0 to 0.3.0 (deea49585)
* build(deps-dev): bump babel/core in /clients/client-web (c5e7d8ab6)
* build(deps-dev): bump karma-coverage in /clients/client-web (8c0c79322)
* build(deps): bump pyyaml from 6.0 to 6.0.1 in /taskcluster (f818ba817)
* build(deps): bump taskcluster from 54.1.2 to 54.4.1 in /taskcluster (06d02af96)
* build(deps-dev): bump nock from 13.3.1 to 13.3.2 in /clients/client (58f394be6)
* build(deps): bump aws-sdk from 2.1376.0 to 2.1426.0 (bfb701686)
* build(deps): bump golang.org/x/tools from 0.11.0 to 0.11.1 (7420158d5)
* build(deps): bump certifi from 2023.5.7 to 2023.7.22 in /taskcluster (5f364270a)

</details>