Skip to content

ci: add job timeout-minutes and pin backport checkout to a SHA#2891

Merged
oscerd merged 1 commit into
apache:mainfrom
oscerd:ci-fix/workflow-hardening
Jun 30, 2026
Merged

ci: add job timeout-minutes and pin backport checkout to a SHA#2891
oscerd merged 1 commit into
apache:mainfrom
oscerd:ci-fix/workflow-hardening

Conversation

@oscerd

@oscerd oscerd commented Jun 29, 2026

Copy link
Copy Markdown
Contributor

Summary

Small hardening of the GitHub Actions workflows (from a catalog audit). CI config only — no product changes.

  • timeout-minutes on every job — none of the 10 jobs had a timeout, so a hung job (most importantly the Testcontainers/JBang integration-tests run) could run up to GitHub's 6-hour default before being killed. Added generous upper bounds: integration-tests 90, java-tests / ci-build 60, the rest 30.
  • Pin actions/checkout in backport.yml to a commit SHA (9c091bb… — the same pin the other workflows already use) instead of the mutable v7.0.0 tag, for supply-chain consistency.

Verification

  • All 9 workflow files parse as valid YAML.
  • 10 runs-on jobs ↔ 10 timeout-minutes (1:1).
  • No mutable actions/checkout@v* tag references remain.

AI-generated by Claude Code on behalf of Andrea Cosentino (@oscerd).

Hardening of the GitHub Actions workflows:

- Add timeout-minutes to every job (none had one). A hung job -- e.g. the
  Testcontainers/JBang integration-tests run -- previously could run up to
  the 6h GitHub default. Values are generous upper bounds (integration-tests
  90, java-tests/ci-build 60, the rest 30).
- Pin actions/checkout in backport.yml to the commit SHA already used by the
  other workflows (was the mutable v7.0.0 tag), for supply-chain consistency.

Co-Authored-By: Claude Opus 4.8 (1M context) <noreply@anthropic.com>
Signed-off-by: Andrea Cosentino <ancosen@gmail.com>
@oscerd oscerd requested review from Croway and davsclaus June 29, 2026 05:55
@oscerd oscerd merged commit 8402363 into apache:main Jun 30, 2026
4 of 5 checks passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

None yet

Projects

None yet

Development

Successfully merging this pull request may close these issues.

2 participants