David Testé
f8684d1f67
chore(ci): add regression benchmark workflow
...
Regression benchmarks are meant to be run in pull-request. They
can be launched in two flavors:
* issue comment: using command like "/bench --backend cpu"
* adding a label: `bench-perfs-cpu` or `bench-perfs-gpu`
Benchmark definitions are written in TOML and located at
ci/regression.toml.
While not exhaustive, it can be easily modified by reading the
embbeded documentation.
"/bench" commands are parsed by a Python script located at
ci/perf_regression.py. This script produces output files that
contains cargo commands and a shell script generating custom
environment variables. The Python script and generated files are
meant to be used only by the workflow
benchmark_perf_regression.yml.
2025-09-16 13:33:49 +02:00
David Testé
9918dacd6a
chore(ci): change workflow jobs naming convention
...
The term "bpr" means Branch Protection Rule. It helps one to
identify any job that must pass before being able to merge to the
base branch.
2025-09-10 15:36:45 +02:00
dependabot[bot]
167e96a30c
chore(deps): update dtolnay/rust-toolchain requirement to e97e2d8cc328f1b50210efc529dca0028893a2d9
...
Updates the requirements on [dtolnay/rust-toolchain](https://github.com/dtolnay/rust-toolchain ) to permit the latest version.
- [Release notes](https://github.com/dtolnay/rust-toolchain/releases )
- [Commits](e97e2d8cc3support@github.com >
2025-08-26 16:05:48 +02:00
David Testé
0a28488079
chore(ci): add permission to github token to release crates
...
When using crates.io trusted publishing feature GitHub token `id-token: write` permission to be able to authenticate the workflow on the registry.
2025-08-21 09:04:39 +02:00
dependabot[bot]
ce9647d3a9
chore(deps): bump actions/checkout from 4.2.2 to 5.0.0
...
Bumps [actions/checkout](https://github.com/actions/checkout ) from 4.2.2 to 5.0.0.
- [Release notes](https://github.com/actions/checkout/releases )
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md )
- [Commits](11bd71901b...08c6903cd8support@github.com >
2025-08-18 14:11:55 +02:00
David Testé
52b1946f25
chore(ci): use crates.io trusted publishing feature
2025-08-12 12:54:57 +02:00
David Testé
41c92e06a8
chore(ci): add missing env variable in cuda release workflow
2025-06-16 12:55:31 +02:00
dependabot[bot]
167329c52a
chore(deps): bump dtolnay/rust-toolchain
...
Bumps [dtolnay/rust-toolchain](https://github.com/dtolnay/rust-toolchain ) from 888c2e1ea69ab0d4330cbf0af1ecc7b68f368cc1 to b3b07ba8b418998c39fb20f53e8b695cdcc8de1b.
- [Release notes](https://github.com/dtolnay/rust-toolchain/releases )
- [Commits](888c2e1ea6...b3b07ba8b4support@github.com >
2025-06-10 17:04:02 +02:00
David Testé
856fc1a709
chore(ci): ignore stale action refs on rust-toolchain action
...
This action doesn't create releases so the action refs doesn't point to a known tag.
If this zizmor findings is not ignored, then continuous integration pipeline is broken.
2025-06-04 11:48:01 +02:00
David Testé
11df6c69ee
chore(ci): fix workflow security warnings
...
Since Zizmor v1.9.0, new pedantic warnings are detected especially
regarding template-injection patterns.
2025-06-02 14:46:14 +02:00
David Testé
ca1c5659a1
chore(ci): avoid double-quote on dry-run variable
...
If the DRY_RUN variable is empty and double-quoted to perform a safe expansion, then `cargo publish` treat the environment variable as `""` and thus fail by handling an unrecognized argument.
2025-05-12 15:25:17 +02:00
David Testé
3f3b4aef41
chore(ci): fix template-injection and token permissions issues
...
This is part of security issues remediation campaign after having
analyzed workflow using zizmor cargo tool.
2025-05-06 14:06:17 +02:00
David Testé
319504137a
chore(ci): factorize usage of slack env variables
2025-04-23 15:13:37 +02:00
David Testé
5b57470652
chore(ci): fix slack notify in case of cancelled step
...
If a step is cancelled, it is not considered as failure by GitHub. So if a user cancelled a task or if a job timed out, then no Slack notification was sent and devs weren't able to track down these events.
2025-04-23 15:13:37 +02:00
dependabot[bot]
7410274126
chore(deps): bump rtCamp/action-slack-notify from 2.3.2 to 2.3.3
...
Bumps [rtCamp/action-slack-notify](https://github.com/rtcamp/action-slack-notify ) from 2.3.2 to 2.3.3.
- [Release notes](https://github.com/rtcamp/action-slack-notify/releases )
- [Commits](c33737706d...e31e87e03dsupport@github.com >
2025-04-15 13:33:54 +02:00
dependabot[bot]
f3e14dc311
chore(deps): bump dtolnay/rust-toolchain
...
Bumps [dtolnay/rust-toolchain](https://github.com/dtolnay/rust-toolchain ) from a54c7afa936fefeb4456b2dd8068152669aa8203 to 888c2e1ea69ab0d4330cbf0af1ecc7b68f368cc1.
- [Release notes](https://github.com/dtolnay/rust-toolchain/releases )
- [Commits](a54c7afa93...888c2e1ea6support@github.com >
2025-03-17 17:55:09 +01:00
dependabot[bot]
d9feb57b92
chore(deps): bump slsa-framework/slsa-github-generator
...
Bumps [slsa-framework/slsa-github-generator](https://github.com/slsa-framework/slsa-github-generator ) from 2.0.0 to 2.1.0.
- [Release notes](https://github.com/slsa-framework/slsa-github-generator/releases )
- [Changelog](https://github.com/slsa-framework/slsa-github-generator/blob/main/CHANGELOG.md )
- [Commits](https://github.com/slsa-framework/slsa-github-generator/compare/v2.0.0...v2.1.0 )
---
updated-dependencies:
- dependency-name: slsa-framework/slsa-github-generator
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
2025-03-03 11:52:56 +01:00
Arthur Meyre
69d5b7206e
chore(ci): fix packaging job to also have exported env vars
2025-02-18 15:24:24 +01:00
Arthur Meyre
a9cb617fe8
chore(ci): fix cuda release workflow to have rust re-installed for cargo
2025-02-18 14:58:40 +01:00
David Testé
3df08e9259
chore(ci): install github runner as ubuntu user for gpu workflows
2025-02-12 12:10:53 +01:00
David Testé
dbde7ada2d
chore(ci): use limited access token to checkout repositories
...
This approach allows checkout public and private repository, like
Slab, without to worry too much about secret leakage under certain
circumstances (e.g. under pull request from forks).
The token has just read access on selected repositories.
2025-01-23 14:32:09 +01:00
aquint-zama
07e3fb2779
chore: add slsa support for tfhe-cuda-backend
2025-01-16 16:04:58 +01:00
David Testé
0952dfa1ad
chore(ci): run teardown job only if setup is a success
2025-01-13 12:19:39 +01:00
David Testé
f633eedc29
chore(ci): push tfhe-cuda-backend to crates.io unconditionally
2025-01-09 12:10:55 +01:00
David Testé
33d5091025
chore(deps): bump zama-ai/slab-github-runner
2024-12-20 10:56:22 +01:00
dependabot[bot]
950cece2a9
chore(deps): bump dtolnay/rust-toolchain
...
Bumps [dtolnay/rust-toolchain](https://github.com/dtolnay/rust-toolchain ) from 315e265cd78dad1e1dcf3a5074f6d6c47029d5aa to a54c7afa936fefeb4456b2dd8068152669aa8203.
- [Release notes](https://github.com/dtolnay/rust-toolchain/releases )
- [Commits](315e265cd7...a54c7afa93support@github.com >
2024-12-18 11:39:47 +01:00
Mayeul@Zama
8cfe540647
fix(ci): fix secret on CI checkout
2024-11-25 18:05:48 +01:00
dependabot[bot]
3ccfb9616a
chore(deps): bump zama-ai/slab-github-runner from 1.2.0 to 1.3.0
...
Bumps [zama-ai/slab-github-runner](https://github.com/zama-ai/slab-github-runner ) from 1.2.0 to 1.3.0.
- [Release notes](https://github.com/zama-ai/slab-github-runner/releases )
- [Commits](https://github.com/zama-ai/slab-github-runner/compare/v1.2.0...98f0788261a7323d5d695a883e20df36591a92b7 )
---
updated-dependencies:
- dependency-name: zama-ai/slab-github-runner
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
2024-11-25 11:06:12 +01:00
dependabot[bot]
83dc9b9453
chore(deps): bump dtolnay/rust-toolchain
...
Bumps [dtolnay/rust-toolchain](https://github.com/dtolnay/rust-toolchain ) from 7b1c307e0dcbda6122208f10795a713336a9b35a to 315e265cd78dad1e1dcf3a5074f6d6c47029d5aa.
- [Release notes](https://github.com/dtolnay/rust-toolchain/releases )
- [Commits](7b1c307e0d...315e265cd7support@github.com >
2024-11-25 11:06:04 +01:00
David Testé
93ddb6b084
chore(ci): verify commit on release
...
Enforce commit being associated to a tag.
The tag must be committed by a member of the release team.
In addition, the tag needs to be verified. Finally, triggering
actor must also be a member of the release team.
2024-10-30 14:40:04 +01:00
dependabot[bot]
69482dec9b
chore(deps): bump actions/checkout from 4.2.1 to 4.2.2
...
Bumps [actions/checkout](https://github.com/actions/checkout ) from 4.2.1 to 4.2.2.
- [Release notes](https://github.com/actions/checkout/releases )
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md )
- [Commits](eef61447b9...11bd71901bsupport@github.com >
2024-10-28 15:01:14 +01:00
dependabot[bot]
2d341f8506
chore(deps): bump rtCamp/action-slack-notify from 2.3.1 to 2.3.2
...
Bumps [rtCamp/action-slack-notify](https://github.com/rtcamp/action-slack-notify ) from 2.3.1 to 2.3.2.
- [Release notes](https://github.com/rtcamp/action-slack-notify/releases )
- [Commits](65e6fc1ce6...c33737706dsupport@github.com >
2024-10-28 15:01:05 +01:00
dependabot[bot]
6628717077
chore(deps): update zama-ai/slab-github-runner requirement to 801df0b8db5ea2b06128b7476c652f5ed5f193a8
...
Updates the requirements on [zama-ai/slab-github-runner](https://github.com/zama-ai/slab-github-runner ) to permit the latest version.
- [Release notes](https://github.com/zama-ai/slab-github-runner/releases )
- [Commits](801df0b8dbsupport@github.com >
2024-10-25 16:31:23 +02:00
dependabot[bot]
9393e59e05
chore(deps): bump rtCamp/action-slack-notify from 2.3.0 to 2.3.1
...
Bumps [rtCamp/action-slack-notify](https://github.com/rtcamp/action-slack-notify ) from 2.3.0 to 2.3.1.
- [Release notes](https://github.com/rtcamp/action-slack-notify/releases )
- [Commits](4e5fb42d24...65e6fc1ce6support@github.com >
2024-10-21 15:40:32 +02:00
dependabot[bot]
d8ac12daa9
chore(deps): bump actions/checkout from 4.2.0 to 4.2.1
...
Bumps [actions/checkout](https://github.com/actions/checkout ) from 4.2.0 to 4.2.1.
- [Release notes](https://github.com/actions/checkout/releases )
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md )
- [Commits](d632683dd7...eef61447b9support@github.com >
2024-10-14 13:33:28 +02:00
dependabot[bot]
75d2457a6f
chore(deps): bump actions/checkout from 4.1.7 to 4.2.0
...
Bumps [actions/checkout](https://github.com/actions/checkout ) from 4.1.7 to 4.2.0.
- [Release notes](https://github.com/actions/checkout/releases )
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md )
- [Commits](692973e3d9...d632683dd7support@github.com >
2024-10-01 11:48:35 +02:00
David Testé
47ea8bf45c
chore(deps): update slab-github-runner requirement to last version
2024-09-23 09:46:52 +02:00
Nicolas Sarlin
1c59c1c260
fix(gpu): use build profile for cuda release
2024-09-19 14:40:15 +02:00
dependabot[bot]
eaa1d07f90
chore(deps): bump dtolnay/rust-toolchain
...
Bumps [dtolnay/rust-toolchain](https://github.com/dtolnay/rust-toolchain ) from 21dc36fb71dd22e3317045c0c31a3f4249868b17 to 7b1c307e0dcbda6122208f10795a713336a9b35a.
- [Release notes](https://github.com/dtolnay/rust-toolchain/releases )
- [Commits](21dc36fb71...7b1c307e0dsupport@github.com >
2024-08-12 15:06:32 +02:00
David Testé
d58a1b68cb
chore(ci): update slab-github-runner action
2024-07-17 16:16:52 +02:00
David Testé
e01f4abb65
chore(ci): update slab-github-runner to latest version
2024-07-11 12:16:07 +02:00
David Testé
33c69d9d1f
chore(ci): update slab-github-runner action
2024-06-25 12:00:12 +02:00
dependabot[bot]
aeed5b70f3
chore(deps): bump dtolnay/rust-toolchain
...
Bumps [dtolnay/rust-toolchain](https://github.com/dtolnay/rust-toolchain ) from d8352f6b1d2e870bc5716e7a6d9b65c4cc244a1a to 21dc36fb71dd22e3317045c0c31a3f4249868b17.
- [Release notes](https://github.com/dtolnay/rust-toolchain/releases )
- [Commits](d8352f6b1d...21dc36fb71support@github.com >
2024-06-17 09:18:06 +02:00
dependabot[bot]
2d0671cdd8
chore(deps): bump actions/checkout from 4.1.5 to 4.1.7
...
Bumps [actions/checkout](https://github.com/actions/checkout ) from 4.1.5 to 4.1.7.
- [Release notes](https://github.com/actions/checkout/releases )
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md )
- [Commits](https://github.com/actions/checkout/compare/v4.1.5...692973e3d937129bcbf40652eb9f2f61becf3332 )
---
updated-dependencies:
- dependency-name: actions/checkout
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
2024-06-17 09:17:33 +02:00
David Testé
05105c9d9e
chore(ci): update slab-github-runner to latest version
2024-05-31 18:05:50 +02:00
dependabot[bot]
f605e7c2ee
chore(deps): bump actions/checkout from 4.1.5 to 4.1.6
...
Bumps [actions/checkout](https://github.com/actions/checkout ) from 4.1.5 to 4.1.6.
- [Release notes](https://github.com/actions/checkout/releases )
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md )
- [Commits](44c2b7a8a4...a5ac7e51b4support@github.com >
2024-05-21 10:00:15 +02:00
David Testé
1b9c61c2d1
chore(ci): run gpu benchmarks on hyperstack platform
2024-05-14 09:24:17 +02:00
dependabot[bot]
80fda99068
chore(deps): bump actions/checkout from 4.1.4 to 4.1.5
...
Bumps [actions/checkout](https://github.com/actions/checkout ) from 4.1.4 to 4.1.5.
- [Release notes](https://github.com/actions/checkout/releases )
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md )
- [Commits](0ad4b8fada...44c2b7a8a4support@github.com >
2024-05-13 13:46:25 +02:00
David Testé
e09ea6c484
chore(ci): update usage of slab-github-runner to last version
2024-05-10 14:14:31 +02:00
dependabot[bot]
246f4c299e
chore(deps): bump dtolnay/rust-toolchain
...
Bumps [dtolnay/rust-toolchain](https://github.com/dtolnay/rust-toolchain ) from bb45937a053e097f8591208d8e74c90db1873d07 to d8352f6b1d2e870bc5716e7a6d9b65c4cc244a1a.
- [Release notes](https://github.com/dtolnay/rust-toolchain/releases )
- [Commits](bb45937a05...d8352f6b1dsupport@github.com >
2024-05-06 10:41:45 +02:00
