From 3206966ee06d863f445466401954c65eea413ee6 Mon Sep 17 00:00:00 2001 From: Molecule AI Infra-SRE Date: Mon, 11 May 2026 23:41:21 +0000 Subject: [PATCH] revert(ci): restore ubuntu-latest runner for publish workflows MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit REVERT of #599 (infra/docker-runner-label) — urgent CI regression fix. The `docker` label is NOT registered on any act_runner. With runs-on: [ubuntu-latest, docker], publish-workflow jobs queue indefinitely with zero eligible runners — strictly worse than the pre-#599 coin-flip (50% success rate). Restore runs-on: ubuntu-latest so publish-workflow jobs can run again. The docker-label registration is the hard prerequisite that must be satisfied before re-applying #599. Fixes: publish-workspace-server-image + publish-canvas-image stuck in "Waiting to run" since #599 merged ~23:24Z. To re-apply: once `docker` label is registered on ≥2 runners, re-apply the runs-on: [ubuntu-latest, docker] change from #599 (branch infra/docker-runner-label). Co-Authored-By: Claude Opus 4.7 --- .gitea/workflows/publish-canvas-image.yml | 12 +++++++----- .gitea/workflows/publish-workspace-server-image.yml | 13 +++++++------ 2 files changed, 14 insertions(+), 11 deletions(-) diff --git a/.gitea/workflows/publish-canvas-image.yml b/.gitea/workflows/publish-canvas-image.yml index f21f0817..0438c33d 100644 --- a/.gitea/workflows/publish-canvas-image.yml +++ b/.gitea/workflows/publish-canvas-image.yml @@ -54,11 +54,13 @@ env: jobs: build-and-push: name: Build & push canvas image - # NOTE: infra-sre must register a `docker` label on every act-runner that - # mounts /var/run/docker.sock (group=docker, socket perms 660+). Jobs without - # the `docker` label land on runners that lack the socket and fail here. - # See issue #576. - runs-on: [ubuntu-latest, docker] + # REVERTED (infra/revert-docker-runner-label): `runs-on: ubuntu-latest` restored. + # The `docker` label is not registered on any act_runner. `runs-on: [ubuntu-latest, docker]` + # causes jobs to queue indefinitely with zero eligible runners — strictly worse than the + # pre-#599 coin-flip (50% success rate). Once the `docker` label is registered on + # ≥2 runners, re-apply the fix from #599 (infra/docker-runner-label). + # See issue #576 + infra-lead pulse ~00:30Z. + runs-on: ubuntu-latest # Phase 3 (RFC #219 §1): surface broken workflows without blocking. continue-on-error: true steps: diff --git a/.gitea/workflows/publish-workspace-server-image.yml b/.gitea/workflows/publish-workspace-server-image.yml index 4bdfef86..0079dadb 100644 --- a/.gitea/workflows/publish-workspace-server-image.yml +++ b/.gitea/workflows/publish-workspace-server-image.yml @@ -52,12 +52,13 @@ env: jobs: build-and-push: - # NOTE: infra-sre must register a `docker` label on every act-runner that - # mounts /var/run/docker.sock (group=docker, socket perms 660+). Jobs without - # the `docker` label land on runners that lack the socket and fail here. - # molecule-runner-1 (no socket) vs molecule-runner-4 (socket) — coin-flip - # without this label gate. See issue #576. - runs-on: [ubuntu-latest, docker] + # REVERTED (infra/revert-docker-runner-label): `runs-on: ubuntu-latest` restored. + # The `docker` label is not registered on any act_runner. `runs-on: [ubuntu-latest, docker]` + # causes jobs to queue indefinitely with zero eligible runners — strictly worse than the + # pre-#599 coin-flip (50% success rate). Once the `docker` label is registered on + # ≥2 runners, re-apply the fix from #599 (infra/docker-runner-label). + # See issue #576 + infra-lead pulse ~00:30Z. + runs-on: ubuntu-latest steps: - name: Checkout uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2