[CD] Adds python docker pipeline

[perdasilva]

Description

Updates CD pipeline to post python docker images. Addressed comments from closed PR #16435
@marcoabreu I've decided I would like to finish this. I've addressed your previous comments.

Example CI-dev run

Checklist

Essentials

Please feel free to remove inapplicable items for your PR.

• The PR title starts with [MXNET-$JIRA_ID], where $JIRA_ID refers to the relevant JIRA issue created (except PRs with tiny changes)
• Changes are complete (i.e. I finished coding on this PR)
• All changes have test coverage:
• Unit tests are added for small changes to verify correctness (e.g. adding a new operator)
• Nightly tests are added for complicated/long-running ones (e.g. changing distributed kvstore)
• Build tests will be added for build configuration changes (e.g. adding a new build option with NCCL)
• Code is well-documented:
• For user-facing API changes, API doc string has been updated.
• For new C++ functions in header files, their functionalities and arguments are documented.
• For new examples, README.md is added to explain the what the example does, the source of the dataset, expected performance on test set and reference to the original paper if applicable
• Check the API doc at https://mxnet-ci-doc.s3-accelerate.dualstack.amazonaws.com/PR-$PR_ID/$BUILD_ID/index.html
• To the my best knowledge, examples are either not affected by this change, or have been fixed to be compatible with this change

[marcoabreu]

This is awesome!! Thanks a ton. Ready to merge whenever you are ready

[aaronmarkham]

I just have a few questions in the review.

I looked at the shell output from the push stage and was hoping to see a link to the asset. Where'd they go? Seems like the only references are abstracted to whatever the secrets config is...

This is great btw.

[aaronmarkham]

I always pick on this one... but isn't it not supported?

[perdasilva]

Good catch! I'll remove

[aaronmarkham]

So all of this is in the new docker client?

[perdasilva]

Yup - it all moved to the "safe_docker_run.py" script

[aaronmarkham]

So this is no longer an issue?

[perdasilva]

It's still a thing - the signal blocking has moved to the "safe_docker_run.py" script ^^

[perdasilva]

I'll move these comments in there for clarity though - good catch!

[perdasilva]

@aaronmarkham you can see the push statement - it's not possible to put a link to the image (the best that can be done is a link to the repository. I'll add a message with the docker pull command to run to get it. Let me know if you would prefer something else =)

[aaronmarkham]

Just notice this:
"SecretString":"{\\"username\\": \\"mxnetcddev\\", \\"password\\": \\"uuz:C^P;2lOR3Z:mNi|:8A6^}UUKtq9F\\"}"
And the security token is output in the log too... maybe they're one time use? Or?...

[perdasilva]

@aaronmarkham nope, that's bad. I've rotated the credentials. I've checked the DockerHub account and nothing has changed there. Thanks for catching this! I've updated the logging configuration and I'm running a job to double check.

[perdasilva]

Okay, looks good now. I'm.glad you took the time to have a look! Thank you!!

[perdasilva]

@aaronmarkham if you are cool with everything, please merge when you get a chance =D

[marcoabreu]

Again, thanks a lot for this contribution! Can you let us (and dev@) know once the images are being published?