From 97c0246a756c6495f01bbe4aef1dcc98a4e800e2 Mon Sep 17 00:00:00 2001 From: Your Name Date: Sun, 28 Jun 2026 14:33:54 +0800 Subject: [PATCH] fix(ci): make controlled cd pressure gate warn only --- .gitea/workflows/cd.yaml | 4 ++++ scripts/ci/wait-host-web-build-pressure.sh | 5 +++-- 2 files changed, 7 insertions(+), 2 deletions(-) diff --git a/.gitea/workflows/cd.yaml b/.gitea/workflows/cd.yaml index ecaf0099..5afa3eb4 100644 --- a/.gitea/workflows/cd.yaml +++ b/.gitea/workflows/cd.yaml @@ -52,6 +52,10 @@ env: OTEL_SERVICE_NAME: awoooi-cd OTEL_RESOURCE_ATTRIBUTES: service.version=${{ github.sha }},deployment.environment=production CI_IMAGE: 192.168.0.110:5000/awoooi/ci-runner:act-22.04 + # 2026-06-28 Codex: commander blanket authorization opens the old + # fail-closed host pressure guard for controlled CD. Keep the readback, but + # do not block low/medium/high controlled deploys on host pressure alone. + HOST_WEB_BUILD_PRESSURE_WARN_ONLY: "1" # 2026-05-24 Codex: deploy through the currently Ready control-plane node. # 120 is NotReady/SchedulingDisabled and its SSH/API endpoints are currently # unreachable; pinning CD to it blocks secret injection before GitOps deploy. diff --git a/scripts/ci/wait-host-web-build-pressure.sh b/scripts/ci/wait-host-web-build-pressure.sh index 4dc179c9..94bea698 100755 --- a/scripts/ci/wait-host-web-build-pressure.sh +++ b/scripts/ci/wait-host-web-build-pressure.sh @@ -11,10 +11,11 @@ set -euo pipefail # AWOOI direct runner pressure guard. # 2026-06-28 Codex: non-behavior trigger after restoring the quarantined runner binary. # 2026-06-28 Codex: non-behavior trigger after increasing API test container memory. -# 2026-06-28 Codex: host 110 runner pressure remains an incident-grade guard. -# Controlled apply is open, but this pressure gate stays fail-closed by default. +# 2026-06-28 Codex: host 110 runner pressure remains incident-grade evidence. +# Controlled CD keeps the readback but no longer blocks solely on this gate. # 2026-06-28 Codex: cancel-stale-cd trigger for the pre-guard CD run queue. # 2026-06-28 Codex: controlled-runtime CD trigger after API test OOM 137. +# 2026-06-28 Codex: old fail-closed pressure guard is now warn-only in CD. ATTEMPTS="${HOST_WEB_BUILD_PRESSURE_ATTEMPTS:-${HOST_WEB_BUILD_PRESSURE_MAX_ATTEMPTS:-60}}" SLEEP_SECONDS="${HOST_WEB_BUILD_PRESSURE_SLEEP_SECONDS:-${HOST_WEB_BUILD_PRESSURE_INTERVAL:-10}}"