Skip to content

Improve StreamFlow on Kubernetes #659

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
GlassOfWhiskey wants to merge 1 commit into
base: master
Choose a base branch
from
Open

Improve StreamFlow on Kubernetes #659

GlassOfWhiskey wants to merge 1 commit into from

Conversation

@GlassOfWhiskey
Copy link
Member

@GlassOfWhiskey GlassOfWhiskey commented Feb 9, 2025

This commit heavily refactors the StreamFlow Helm chart to simplify its deployment on top of Kubernetes clusters.

In addition, this commit adds a networkPolicy flag to control the behaviour of CWL DockerRequirement objects into Kubernetes Pod items. Normally, the CWL NetworkAccess requirement is enforced through Kubernetes NetworkPolicy objects. However, NetworkPolicy objects regulate the network security inside a cluster, and giving the StreamFlow Pod permissions to create/delete them may result in unwanted security flaws. The networkPolicy option can be set to False to ignore the CWL NetworkAccess enforcement in such cases.

@codecov
Copy link

codecov bot commented Feb 9, 2025
edited
Loading

❌ 1 Tests Failed:

Tests completed Failed Passed Skipped
446 1 445 4
View the top 1 failed test(s) by shortest run time 
cwl-v1.1-6397014050177074c9ccd0d771577f7fa9f728a3/conformance_tests.cwltest.yaml::conformance_tests::cwltest::yaml::inplace_update_on_dir_content
Stack Traces | 0.363s run time 
CWL test execution failed. 
Returned non-zero but it should be zero
Test: job: 
  file:.../streamflow/streamflow/cwl-v1.1-6397014050177074c9ccd0d771577f7fa9f728a3/tests/empty.json
tool: 
  file:.../streamflow/streamflow/cwl-v1.1-6397014050177074c9ccd0d771577f7fa9f728a3/tests/inpdir_update_wf.cwl
doc: inplace update has side effect on directory content
label: inplace_update_on_dir_content
tags:
- inplace_update
- workflow
output:
  a:
  - basename: blurb
    class: File
    location: blurb
  b:
  - basename: blurb
    class: File
    location: blurb
id: 236
line: '3042'

To view more test analytics, go to the Test Analytics Dashboard
📋 Got 3 mins? Take this short survey to help us improve Test Analytics.

@GlassOfWhiskey GlassOfWhiskey force-pushed the update-helm-chart branch 6 times, most recently from eda8219 to 4685214 Compare February 10, 2025 15:38
LanderOtto
LanderOtto approved these changes Feb 10, 2025
View reviewed changes
Copy link
Collaborator

@LanderOtto LanderOtto left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM

@GlassOfWhiskey GlassOfWhiskey force-pushed the update-helm-chart branch 2 times, most recently from 5c0434d to be2e554 Compare October 9, 2025 19:08
@dependabot @GlassOfWhiskey
Bump github/codeql-action from 3 to 4 (#823)
89a4641 
Bumps [github/codeql-action](https://github.com/github/codeql-action) from 3 to 4.
- [Release notes](https://github.com/github/codeql-action/releases)
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)
- [Commits](github/codeql-action@v3...v4)

---
updated-dependencies:
- dependency-name: github/codeql-action
  dependency-version: '4'
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <[email protected]>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
@GlassOfWhiskey GlassOfWhiskey force-pushed the master branch 7 times, most recently from b21f362 to e7820f1 Compare January 12, 2026 08:25
@GlassOfWhiskey GlassOfWhiskey force-pushed the master branch 4 times, most recently from 8c05dac to 4a6edc9 Compare January 24, 2026 13:16
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@LanderOtto LanderOtto LanderOtto approved these changes

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@GlassOfWhiskey @LanderOtto