Do all notebook filtering in the business, not in the CI job #362
Conversation
There was a problem hiding this comment.
I agree with doing all of the notebook filtering in the business.
I'm trying to decide if it would make sense to merge the paths between the mobu configuration and the repo configuration instead. I think that may be best? I don't like the idea that an exclusion directory in the notebook repository can cause a notebook to be included that's explicitly excluded in the Phalanx configuration.
If the configuration in the repository is invalid, I think this throws an uncaught exception that may not have all the metadata that we'd prefer. It feels like there should be a custom exception for this case that incorporates the information from the Pydantic ValidationError but also adds the normal mobu exception metadata for a better Slack exception report.
I share your worry about leaking information into the logs, like PostgreSQL passwords, but it would also be very nice to be able to see the logs. I'm anticipating the tutorial notebook case where the folks working on the notebook are going to ask us what failed. Maybe something to bring up during stand-up?
|
If I'm understanding the neutral result discussion correctly, yes, I think having a solitary return a different result when it found no notebooks to execute is probably the right way to do it. |
@rra, I think we should ditch the autostart exclude config entirely 😄 With that config in both places, any way we reconcile them is potentially confusing:
If the goal with the mobu roadmap is to promote mobu and enable more folks to use mobu to test their stuff, it seems like we should be moving stuff out of the autostart config (which only mobu admins can change) and into the payload repo. Assuming we can do it securely. |
|
Ah, yes, that works. Let's do it that way. It's not a meaningful security barrier since people can just put notebooks elsewhere in the repository anyway, and the problem stems from having the same information in more than one place. Eliminating either of those places will fix the problem. |
fajpunk
force-pushed
the
tickets/DM-45079/centralize-notebook-filtering
branch
from
386f218
to
b7cf734
Compare
* This is nice because it is easier to understand and less error prone * This stinks because a job that didn't find any notebooks to run will look just like a job that successfully ran notebooks I'd like to mark the check run as neutral in this case, but I think it can wait until another PR.
Which means it can no longer be set in the autostart config. `exclude_dirs must be set in an in-repo `mobu.yaml` config file now.
fajpunk
force-pushed
the
tickets/DM-45079/centralize-notebook-filtering
branch
from
c201ec9
to
1327bb0
Compare
I'd like to mark the check run as neutral in this case, but I think it can wait until another PR.
There are a few ways to do it:
SolitaryResult. The more I think about this, given this notebook runner is the only case of this third type of result from a solitary execution (aside from 'success' or 'failure'), the less opposed I am to do it...NotebookRunner. I don't love this, because:NotebookRunneroutside of the filtering that causes a wacky situation like thisNotebookRunnerreturn aSolitaryNeutralResult. This is probably the right way to do it, but it would add a lot of changes to this already-big-ish PR.Another related thing would be putting execution logs in the github check details. I haven't done this so far because I'm worried that this would make it easy to accidentally leak some kind of sensitive info.