Merge branch 'master' into feat/pg-meta-cache

Author: alaister

.dockerignore

@@ -1,2 +1,4 @@
 *
-!bin
+!src
+!package*.json
+!tsconfig*.json

.github/CODEOWNERS

@@ -0,0 +1 @@
+* @supabase/api

.github/dependabot.yml

@@ -0,0 +1,10 @@
+version: 2
+updates:
+  - package-ecosystem: "github-actions"
+    directory: "/"
+    schedule:
+      interval: "daily"
+  - package-ecosystem: "npm"
+    directory: "/"
+    schedule:
+      interval: "daily"

.github/workflows/automerge.yml

@@ -0,0 +1,31 @@
+name: Dependabot auto-merge
+on: pull_request
+
+permissions:
+  contents: write
+  pull-requests: write
+
+jobs:
+  dependabot:
+    runs-on: ubuntu-latest
+    if: ${{ github.actor == 'dependabot[bot]' }}
+    steps:
+      - name: Dependabot metadata
+        id: metadata
+        uses: dependabot/fetch-metadata@v1
+        with:
+          github-token: "${{ secrets.GITHUB_TOKEN }}"
+
+      - name: Approve a PR
+        if: ${{ steps.metadata.outputs.update-type != 'version-update:semver-major' && !startswith(steps.metadata.outputs.new_version, '0.') }}
+        run: gh pr review --approve "$PR_URL"
+        env:
+          PR_URL: ${{ github.event.pull_request.html_url }}
+          GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
+
+      - name: Enable auto-merge for Dependabot PRs
+        if: ${{ steps.metadata.outputs.update-type != 'version-update:semver-major' && !startswith(steps.metadata.outputs.new_version, '0.') }}
+        run: gh pr merge --auto --squash "$PR_URL"
+        env:
+          PR_URL: ${{ github.event.pull_request.html_url }}
+          GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}

.github/workflows/ci.yml

@@ -12,22 +12,60 @@ jobs:
     name: Test
     runs-on: ubuntu-20.04
     steps:
-      - uses: actions/checkout@v2
+      - uses: actions/checkout@v3
 
-      - uses: actions/setup-node@v2
+      - uses: actions/setup-node@v3
         with:
-          node-version: "14"
+          node-version: "16"
 
       - run: |
           npm clean-install
+          npm run check
           npm run test
 
   prettier-check:
     name: Prettier check
     runs-on: ubuntu-20.04
     steps:
-      - uses: actions/checkout@v2
+      - uses: actions/checkout@v3
 
       - uses: actionsx/prettier@v2
         with:
           args: --check "{src,test}/**/*.ts"
+  
+  docker:
+    name: Build with docker
+    runs-on: ubuntu-20.04
+    steps:
+      - uses: actions/checkout@v3
+        name: Checkout Repo
+
+      - uses: docker/setup-buildx-action@v2
+        name: Set up Docker Buildx
+      
+      - uses: docker/build-push-action@v4
+        with:
+          push: false
+          tags: pg-meta:test
+          load: true
+          cache-from: type=gha
+          cache-to: type=gha,mode=max
+      
+      - name: Check Health status
+        run: |
+          docker run -d --name pg-meta-test pg-meta:test
+          state=$(docker inspect -f '{{ .State.Health.Status}}' pg-meta-test)
+          if [ $state != "starting" ]; then
+            exit 1
+          fi
+          sleep 10
+          state=$(docker inspect -f '{{ .State.Health.Status}}' pg-meta-test)
+          docker stop pg-meta-test
+          if [ $state == "healthy" ]; then
+            exit 0
+          else
+            exit 1
+          fi
+      
+      
+

.github/workflows/docs.yml

@@ -11,11 +11,11 @@ jobs:
     name: Publish docs
     runs-on: ubuntu-20.04
     steps:
-      - uses: actions/checkout@v2
+      - uses: actions/checkout@v3
 
-      - uses: actions/setup-node@v2
+      - uses: actions/setup-node@v3
         with:
-          node-version: "14"
+          node-version: "16"
 
       - run: |
           npm clean-install

.github/workflows/mirror.yml

@@ -0,0 +1,36 @@
+name: Mirror Image
+
+on:
+  workflow_dispatch:
+    inputs:
+      version:
+        description: 'Image tag'
+        required: true
+        type: string
+
+jobs:
+  mirror:
+    runs-on: ubuntu-latest
+    permissions:
+      contents: read
+      packages: write
+    steps:
+      - name: configure aws credentials
+        uses: aws-actions/configure-aws-credentials@v1
+        with:
+          role-to-assume: ${{ secrets.PROD_AWS_ROLE }}
+          aws-region: us-east-1
+      - uses: docker/login-action@v2
+        with:
+          registry: public.ecr.aws
+      - uses: docker/login-action@v2
+        with:
+          registry: ghcr.io
+          username: ${{ github.actor }}
+          password: ${{ secrets.GITHUB_TOKEN }}
+      - uses: akhilerm/[email protected]
+        with:
+          src: docker.io/supabase/postgres-meta:${{ inputs.version }}
+          dst: |
+            public.ecr.aws/supabase/postgres-meta:${{ inputs.version }}
+            ghcr.io/supabase/postgres-meta:${{ inputs.version }}

.github/workflows/publish-deps.yml

@@ -0,0 +1,28 @@
+name: Publish Dependencies
+
+on:
+  workflow_dispatch:
+
+jobs:
+  publish:
+    # Must match glibc verison in node:16-bullseye
+    runs-on: ubuntu-20.04
+    steps:
+      - uses: actions/checkout@v3
+        with:
+          repository: 'pyramation/libpg-query-node'
+          ref: 'v13'
+
+      - uses: actions/setup-node@v3
+        with:
+          node-version: '16'
+
+      - run: npm i
+      - run: npm run binary:build
+
+      - uses: aws-actions/configure-aws-credentials@v1
+        with:
+          role-to-assume: ${{ secrets.PROD_AWS_ROLE }}
+          aws-region: us-east-1
+
+      - run: npx node-pre-gyp publish

.github/workflows/release.yml

@@ -14,20 +14,20 @@ jobs:
       new-release-published: ${{ steps.semantic-release.outputs.new_release_published }}
       new-release-version: ${{ steps.semantic-release.outputs.new_release_version }}
     steps:
-      - uses: actions/checkout@v2
+      - uses: actions/checkout@v3
 
-      - uses: actions/setup-node@v2
+      - uses: actions/setup-node@v3
         with:
-          node-version: "14"
+          node-version: '16'
 
       - run: |
           npm clean-install
           npm run build
 
       - id: semantic-release
-        uses: cycjimmy/semantic-release-action@v2
+        uses: cycjimmy/semantic-release-action@v3
         with:
-          semantic_version: 17
+          semantic_version: 18
         env:
           GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
           NPM_TOKEN: ${{ secrets.NPM_TOKEN }}
@@ -39,11 +39,11 @@ jobs:
     if: needs.semantic-release.outputs.new-release-published == 'true'
     runs-on: ubuntu-20.04
     steps:
-      - uses: actions/checkout@v2
+      - uses: actions/checkout@v3
 
-      - uses: actions/setup-node@v2
+      - uses: actions/setup-node@v3
         with:
-          node-version: "14"
+          node-version: '16'
 
       - name: Prepare release
         run: |
@@ -66,33 +66,55 @@ jobs:
     needs:
       - semantic-release
     if: needs.semantic-release.outputs.new-release-published == 'true'
-    runs-on: ubuntu-20.04
+    runs-on: ubuntu-latest
+    permissions:
+      id-token: write # This is required for requesting the JWT from AWS
+      contents: read
+      packages: write
     steps:
-      - uses: actions/checkout@v2
-
-      - uses: actions/setup-node@v2
+      - id: meta
+        uses: docker/metadata-action@v4
         with:
-          node-version: "14"
-
-      - name: Prepare build
-        run: |
-          npm clean-install
-          npm run pkg
-
-      - uses: docker/setup-qemu-action@v1
+          images: |
+            supabase/postgres-meta
+            public.ecr.aws/supabase/postgres-meta
+            ghcr.io/supabase/postgres-meta
+          tags: |
+            type=raw,value=v${{ needs.semantic-release.outputs.new-release-version }}
+
+      - uses: docker/setup-qemu-action@v2
         with:
           platforms: amd64,arm64
+      - uses: docker/setup-buildx-action@v2
 
-      - uses: docker/setup-buildx-action@v1
-
-      - uses: docker/login-action@v1
+      - name: Login to DockerHub
+        uses: docker/login-action@v2
         with:
           username: ${{ secrets.DOCKER_USERNAME }}
           password: ${{ secrets.DOCKER_PASSWORD }}
 
-      - uses: docker/build-push-action@v2
+      - name: configure aws credentials
+        uses: aws-actions/configure-aws-credentials@v1
+        with:
+          role-to-assume: ${{ secrets.PROD_AWS_ROLE }}
+          aws-region: us-east-1
+
+      - name: Login to ECR
+        uses: docker/login-action@v2
+        with:
+          registry: public.ecr.aws
+
+      - name: Login to GHCR
+        uses: docker/login-action@v2
+        with:
+          registry: ghcr.io
+          username: ${{ github.actor }}
+          password: ${{ secrets.GITHUB_TOKEN }}
+
+      - uses: docker/build-push-action@v4
         with:
-          context: .
           push: true
-          tags: supabase/postgres-meta:latest,supabase/postgres-meta:v${{ needs.semantic-release.outputs.new-release-version }}
           platforms: linux/amd64,linux/arm64
+          tags: ${{ steps.meta.outputs.tags }}
+          cache-from: type=gha
+          cache-to: type=gha,mode=max

.pkg.config.json

@@ -1,10 +1,11 @@
 {
   "name": "@supabase/postgres-meta",
   "bin": {
-    "postgres-meta": "bin/src/server/app.js"
+    "postgres-meta": "dist/server/server.js"
   },
   "pkg": {
-    "assets": ["bin/**/*.sql"],
+    "outputPath": "bin",
+    "assets": ["dist/**/*.sql"],
     "scripts": ["node_modules/pg-format/lib/reserved.js"]
   }
 }