.github/workflows/awscleanup.yaml

name: Daily AWS Cleanup Bot

# on:
#   schedule:
#     - cron: '0 8 * * *'

on:
  pull_request:
    types:
      - opened
      - synchronize
    branches:
      - awsresourcecleanup
  push:
    branches:
      - awsresourcecleanup

jobs:
  cleanup:
    runs-on: linux-amd64-cpu4

    steps:
      - name: Checkout repository
        uses: actions/checkout@v4

      - name: Set up AWS CLI
        uses: aws-actions/configure-aws-credentials@v4
        with:
          aws-access-key-id: ${{ secrets.AWS_ACCESS_KEY_ID }}
          aws-secret-access-key: ${{ secrets.AWS_SECRET_ACCESS_KEY }}
          aws-region: us-west-1

      - name: Identify resources for deletion
        id: identify-resources
        run: |
          # Find vpcs with names ci*
          vpcs=$(aws ec2 describe-vpcs \
            --filters "Name=tag:Name,Values=ci*" \
            --query "Vpcs[].VpcId" \
            --output text | tr -d '\r' | tr '\n' ' ')
          echo "Found VPCs: $vpcs"
          echo "vpcs=$vpcs" >> $GITHUB_ENV

      - name: Clean up VPCs
        if: env.vpcs != ''
        env:
          GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
        run: |
          get_tag_value(){
            local vpc_id=$1
            local key=$2
            aws ec2 describe-tags --filters "Name=resource-id,Values=$vpc_id" "Name=key,Values=$key" \
              --query "Tags[0].Value" --output text
          }
          for vpc in $vpcs; do
            echo "SHIVA1"
            get_tag_value $vpc "GithubRepository"
            get_tag_value $vpc "GithubRunId"
            get_tag_value $vpc "GithubJob"
            echo "SHIVA2"
            github_repository=$(get_tag_value $vpc "GithubRepository")
            run_id=$(get_tag_value $vpc "GithubRunId")
            job_name=$(get_tag_value $vpc "GithubJob")
            response=$(curl -s -H "Authorization: Bearer $GITHUB_TOKEN" \
              "https://api.github.com/repos/NVIDIA/${github_repository}/actions/runs/${run_id}/jobs")
            if [[ -z "$response" || "$response" == "null" ]]; then
              continue
            fi
            status=$(echo "$response" | jq -r ".jobs[] | select(.name | test(\"^$job_name\")) | .status" 2>/dev/null || echo "null")
            echo "SHIVA status  $status"
            echo "$status" | grep -qvE '^(queued|in_progress)$'
            echo "KUMAR"
            if [[ "$status" != "null" && ! -z "$status" && $(echo "$status" | grep -qvE '^(queued|in_progress)$'; echo $?) -eq 0 ]]; then
              echo "Holodeck Job status is not in running stage , Delete the dependend resources"
              scripts/awscleanup.sh $vpc
            fi
          done

      - name: Post cleanup
        run: |
          echo "Cleanup completed."