Skip distributor re-build (#1917)

Author: jefchien

.github/workflows/build-test-artifacts.yml

@@ -82,6 +82,7 @@ jobs:
 
   BuildDistributor:
     needs: [BuildAndUpload, BuildAndUploadPackages, BuildDocker]
+    if: ${{ github.event_name == 'push' || inputs.build-distributor }}
     uses: ./.github/workflows/test-build-distributor.yml
     secrets: inherit
     permissions:

.github/workflows/test-build-distributor.yml

@@ -3,6 +3,7 @@ env:
   CWA_GITHUB_TEST_REPO_NAME: "aws/amazon-cloudwatch-agent-test"
   CWA_GITHUB_TEST_REPO_BRANCH: "main"
   CHECKOUT_ROOT_DIR: "test"
+  SSM_DISTRIBUTOR_VERSION_LIMIT: 25
 on:
   workflow_dispatch:
     inputs:
@@ -74,22 +75,39 @@ jobs:
       contents: read
     outputs:
       agent-version: ${{ steps.version.outputs.version }}
+      should-build: ${{ steps.check.outputs.should-build }}
     steps:
       - name: Configure AWS Credentials
         uses: aws-actions/configure-aws-credentials@v4
         with:
           role-to-assume: ${{ inputs.TerraformAWSAssumeRole }}
           aws-region: ${{ inputs.Region }}
+
       - name: Agent Version
         id: version
         run: |
           aws s3 cp s3://${{ inputs.Bucket }}/${{ inputs.BucketKey }}/CWAGENT_VERSION .
           echo "version=$(cat CWAGENT_VERSION)" >> "$GITHUB_OUTPUT"
 
+      - name: Check if SSM distributor version already exists
+        id: check
+        run: |
+          if aws ssm describe-document \
+            --name "${{ inputs.DistributorName }}" \
+            --region ${{ inputs.Region }} \
+            --query 'Document.VersionName' \
+            --output text 2>/dev/null | grep -q "^${{ steps.version.outputs.version }}$"; then
+            echo "should-build=false" >> "$GITHUB_OUTPUT"
+            echo "Version ${{ steps.version.outputs.version }} already exists, skipping build"
+          else
+            echo "should-build=true" >> "$GITHUB_OUTPUT"
+          fi
+
   PackageLinux:
     name: 'PackageLinux'
     runs-on: ubuntu-latest
     needs: [AgentVersion]
+    if: needs.AgentVersion.outputs.should-build == 'true'
     permissions:
       id-token: write
       contents: read
@@ -149,6 +167,7 @@ jobs:
     name: 'PackageDarwin'
     runs-on: ubuntu-latest
     needs: [AgentVersion]
+    if: needs.AgentVersion.outputs.should-build == 'true'
     permissions:
       id-token: write
       contents: read
@@ -206,6 +225,7 @@ jobs:
     name: 'PackageWindows'
     runs-on: ubuntu-latest
     needs: [AgentVersion]
+    if: needs.AgentVersion.outputs.should-build == 'true'
     permissions:
       id-token: write
       contents: read
@@ -260,6 +280,7 @@ jobs:
     name: 'UploadDistributor'
     runs-on: ubuntu-latest
     needs: [AgentVersion, PackageLinux, PackageDarwin, PackageWindows]
+    if: needs.AgentVersion.outputs.should-build == 'true'
     permissions:
       id-token: write
       contents: read
@@ -321,6 +342,16 @@ jobs:
             --document-type Package \
             --region ${{ inputs.Region }}
 
+      - name: Remove oldest if limit hit
+        if: steps.check-distributor.outputs.exists == 'true'
+        run: |
+          VERSION_COUNT=$(aws ssm list-document-versions --name "${{ inputs.DistributorName }}" --region ${{ inputs.Region }} --no-paginate --query 'length(DocumentVersions)' --output text)
+          if [ "$VERSION_COUNT" -ge ${{ env.SSM_DISTRIBUTOR_VERSION_LIMIT }} ]; then
+            OLDEST_VERSION=$(aws ssm list-document-versions --name "${{ inputs.DistributorName }}" --region ${{ inputs.Region }} --no-paginate --query 'DocumentVersions[-1].DocumentVersion' --output text)
+            echo "Deleting oldest version: $OLDEST_VERSION"
+            aws ssm delete-document --name "${{ inputs.DistributorName }}" --document-version "$OLDEST_VERSION" --region ${{ inputs.Region }}
+          fi
+
       - name: Update distributor
         if: steps.check-distributor.outputs.exists == 'true'
         run: |