Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Tech debt: Operational Experience review #2203

Closed
16 tasks done
heitorlessa opened this issue May 5, 2023 · 8 comments
Closed
16 tasks done

Tech debt: Operational Experience review #2203

heitorlessa opened this issue May 5, 2023 · 8 comments
Assignees
@heitorlessa
Labels
tech-debt Technical Debt tasks

Comments

@heitorlessa
Copy link
Contributor

heitorlessa commented May 5, 2023
edited
Loading

Why is this needed?

There are a few areas left from v1 to v2 we couldn't optimize, namely for now are:

Which area does this relate to?

Other

Suggestion

No response

Acknowledgment
@heitorlessa heitorlessa added triage Pending triage from maintainers tech-debt Technical Debt tasks and removed triage Pending triage from maintainers labels May 5, 2023
@heitorlessa heitorlessa self-assigned this May 5, 2023
@sthulb sthulb moved this from Triage to Working on it in Powertools for AWS Lambda (Python) Jun 19, 2023
@leandrodamascena leandrodamascena moved this from Working on it to Backlog in Powertools for AWS Lambda (Python) Jun 20, 2023
@heitorlessa
Copy link
Contributor Author

Using variables with hashFiles() doesn't work as expected, hashes don't match due to string interpolation.

We've got two options here: 1/ Keep as-is, 2/ Create a hash script ourselves -- WDYT @leandrodamascena ?

image

@heitorlessa heitorlessa mentioned this issue Jun 21, 2023
Merged
8 tasks
@github-actions github-actions bot added the pending-release Fix or implementation already in dev waiting to be released label Jun 21, 2023
@github-actions
Copy link
Contributor

This is now released under 2.18.0 version!

@github-actions github-actions bot removed the pending-release Fix or implementation already in dev waiting to be released label Jun 23, 2023
@github-project-automation github-project-automation bot moved this from Backlog to Coming soon in Powertools for AWS Lambda (Python) Jun 23, 2023
@leandrodamascena leandrodamascena moved this from Coming soon to Shipped in Powertools for AWS Lambda (Python) Jun 23, 2023
@heitorlessa heitorlessa reopened this Jul 4, 2023
@github-project-automation github-project-automation bot moved this from Shipped to Pending review in Powertools for AWS Lambda (Python) Jul 4, 2023
@step-security-bot step-security-bot mentioned this issue Jul 4, 2023
Merged
@heitorlessa heitorlessa mentioned this issue Jul 4, 2023
Merged
7 tasks
@github-actions github-actions bot added the pending-release Fix or implementation already in dev waiting to be released label Jul 4, 2023
This was referenced Jul 4, 2023
Merged
Merged
@step-security-bot step-security-bot mentioned this issue Jul 4, 2023
Merged
This was referenced Jul 4, 2023
Merged
Merged
@heitorlessa heitorlessa removed the pending-release Fix or implementation already in dev waiting to be released label Jul 5, 2023
@heitorlessa heitorlessa moved this from Pending review to Working on it in Powertools for AWS Lambda (Python) Jul 5, 2023
@heitorlessa
Copy link
Contributor Author

Still investigating how to satisfy three security alerts in a way that the scanner understands - it doesn't recognize the use of hashed dependencies and locks (e.g., package-lock.json).

ossf/scorecard#2518

@step-security-bot step-security-bot mentioned this issue Jul 5, 2023
Merged
@heitorlessa heitorlessa mentioned this issue Jul 5, 2023
Merged
7 tasks
@heitorlessa
Copy link
Contributor Author

Another bug in scorecard that we're getting penalized at job level permission despite using least privileges: ossf/scorecard#3045

there's a PR in place: ossf/scorecard#3162

@github-actions github-actions bot added the pending-release Fix or implementation already in dev waiting to be released label Jul 5, 2023
@heitorlessa heitorlessa mentioned this issue Jul 5, 2023
Closed
7 tasks
@heitorlessa
Copy link
Contributor Author

No luck with continuous fuzzing - most examples are in C, not much in Python. Opened an issue for clarifications: google/clusterfuzzlite#128

The brightside is that it appears to integrate with Hypothesis for mutation testing, which we plan to move to anyway, making it easier to define targets for our large APIs.

This was referenced Jul 5, 2023
Merged
Merged
Merged
Merged
Merged
Merged
@heitorlessa heitorlessa mentioned this issue Jul 13, 2023
Merged
14 tasks
@github-actions
Copy link
Contributor

This is now released under 2.20.0 version!

@github-actions github-actions bot removed the pending-release Fix or implementation already in dev waiting to be released label Jul 14, 2023
@github-project-automation github-project-automation bot moved this from Working on it to Coming soon in Powertools for AWS Lambda (Python) Jul 14, 2023
@heitorlessa heitorlessa mentioned this issue Jul 14, 2023
Merged
7 tasks
@github-actions github-actions bot added the pending-release Fix or implementation already in dev waiting to be released label Jul 17, 2023
@github-actions
Copy link
Contributor

This is now released under 2.21.0 version!

@github-actions github-actions bot removed the pending-release Fix or implementation already in dev waiting to be released label Jul 21, 2023
@leandrodamascena leandrodamascena moved this from Coming soon to Shipped in Powertools for AWS Lambda (Python) Jul 21, 2023
@heitorlessa heitorlessa mentioned this issue Aug 1, 2023
Merged
7 tasks
@github-actions github-actions bot added the pending-release Fix or implementation already in dev waiting to be released label Aug 1, 2023
@heitorlessa heitorlessa mentioned this issue Aug 2, 2023
Merged
7 tasks
@heitorlessa heitorlessa mentioned this issue Aug 15, 2023
Merged
7 tasks
@github-actions
Copy link
Contributor

This is now released under 2.23.0 version!

@github-actions github-actions bot removed the pending-release Fix or implementation already in dev waiting to be released label Aug 18, 2023
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@heitorlessa heitorlessa

Labels
tech-debt Technical Debt tasks
Projects
Powertools for AWS Lambda (Python)
Status: Shipped
Milestone
No milestone
Development

No branches or pull requests
1 participant
@heitorlessa