Skip to content

unused aws instace and vpcs cleanup #38

unused aws instace and vpcs cleanup

unused aws instace and vpcs cleanup #38

Workflow file for this run

name: Daily AWS Cleanup Bot
# on:
# schedule:
# - cron: '0 8 * * *'
on:
pull_request:
types:
- opened
- synchronize
branches:
- awsresourcecleanup
push:
branches:
- awsresourcecleanup
jobs:
cleanup:
runs-on: linux-amd64-cpu4
steps:
- name: Checkout repository
uses: actions/checkout@v4
- name: Set up AWS CLI
uses: aws-actions/configure-aws-credentials@v4
with:
aws-access-key-id: ${{ secrets.AWS_ACCESS_KEY_ID }}
aws-secret-access-key: ${{ secrets.AWS_SECRET_ACCESS_KEY }}
aws-region: us-west-1
- name: Identify resources for deletion
id: identify-resources
run: |
# Find vpcs with names ci*
vpcs=$(aws ec2 describe-vpcs \
--filters "Name=tag:Name,Values=ci*" \
--query "Vpcs[].VpcId" \
--output text | tr -d '\r' | tr '\n' ' ')
echo "Found VPCs: $vpcs"
echo "vpcs=$vpcs" >> $GITHUB_ENV
- name: Clean up VPCs
if: env.vpcs != ''
env:
GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
run: |
get_tag_value(){
local vpc_id=$1
local key=$2
aws ec2 describe-tags --filters "Name=resource-id,Values=$vpc_id" "Name=key,Values=$key" \
--query "Tags[0].Value" --output text
}
for vpc in $vpcs; do
get_tag_value $vpc "GithubRepository"
get_tag_value $vpc "GithubRunId"
get_tag_value $vpc "GithubJob"
github_repository=$(get_tag_value $vpc "GithubRepository")
run_id=$(get_tag_value $vpc "GithubRunId")
job_name=$(get_tag_value $vpc "GithubJob")
response=$(curl -s -H "Authorization: Bearer $GITHUB_TOKEN" \
"https://api.github.com/repos/NVIDIA/${github_repository}/actions/runs/${run_id}/jobs")
echo "SHIVA response $response"
if [[ -z "$response" || "$response" == "null" ]]; then
continue
fi
status=$(echo "$response" | jq -r ".jobs[] | select(.name | test(\"^$job_name\")) | .status" 2>/dev/null || echo "null")
echo "SHIVA status $status"
echo "$status" | grep -qvE '^(queued|in_progress)$'
echo "KUMAR"
if [[ "$status" != "null" && ! -z "$status" && $(echo "$status" | grep -qvE '^(queued|in_progress)$'; echo $?) -eq 0 ]]; then
echo "Holodeck Job status is not in running stage , Delete the dependend resources"
scripts/awscleanup.sh $vpc
fi
done
- name: Post cleanup
run: |
echo "Cleanup completed."