diff --git a/.github/workflows/bump-python-package.yml b/.github/workflows/bump-python-package.yml index 305e38d99a4..642114960a0 100644 --- a/.github/workflows/bump-python-package.yml +++ b/.github/workflows/bump-python-package.yml @@ -23,7 +23,7 @@ on: jobs: bump-python-package: - runs-on: ubuntu-24.04 + runs-on: ubuntu-slim permissions: actions: write contents: write diff --git a/.github/workflows/check_db_migration_confict.yml b/.github/workflows/check_db_migration_confict.yml index 20a1daf93ec..d5a0ab6c3d0 100644 --- a/.github/workflows/check_db_migration_confict.yml +++ b/.github/workflows/check_db_migration_confict.yml @@ -19,7 +19,7 @@ concurrency: jobs: check_db_migration_conflict: name: Check DB migration conflict - runs-on: ubuntu-24.04 + runs-on: ubuntu-slim permissions: contents: read pull-requests: write diff --git a/.github/workflows/dependency-review.yml b/.github/workflows/dependency-review.yml index 4b27518380a..04d76d641c1 100644 --- a/.github/workflows/dependency-review.yml +++ b/.github/workflows/dependency-review.yml @@ -24,7 +24,7 @@ permissions: jobs: dependency-review: if: github.event_name == 'pull_request' - runs-on: ubuntu-24.04 + runs-on: ubuntu-slim steps: - name: "Checkout Repository" uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0 @@ -48,7 +48,7 @@ jobs: python-dependency-liccheck: # NOTE: Configuration for liccheck lives in our pyproject.yml. # You cannot use a liccheck.ini file in this workflow. - runs-on: ubuntu-22.04 + runs-on: ubuntu-slim steps: - name: "Checkout Repository" uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0 diff --git a/.github/workflows/docker.yml b/.github/workflows/docker.yml index 3d7892151fc..85d72f6b2b7 100644 --- a/.github/workflows/docker.yml +++ b/.github/workflows/docker.yml @@ -40,7 +40,7 @@ jobs: token: ${{ secrets.GITHUB_TOKEN }} setup_matrix: - runs-on: ubuntu-24.04 + runs-on: ubuntu-slim timeout-minutes: 5 outputs: matrix_config: ${{ steps.set_matrix.outputs.matrix_config }} diff --git a/.github/workflows/embedded-sdk-release.yml b/.github/workflows/embedded-sdk-release.yml index fbd03b3314c..4192cbb1410 100644 --- a/.github/workflows/embedded-sdk-release.yml +++ b/.github/workflows/embedded-sdk-release.yml @@ -15,7 +15,7 @@ jobs: # gate on. Restrict to the canonical repo: forks cannot mint a valid OIDC # token for this package and must not publish. if: github.repository == 'apache/superset' - runs-on: ubuntu-24.04 + runs-on: ubuntu-slim permissions: contents: read id-token: write # required for npm trusted publishing (OIDC) diff --git a/.github/workflows/embedded-sdk-test.yml b/.github/workflows/embedded-sdk-test.yml index 36252fc795d..e448460ff32 100644 --- a/.github/workflows/embedded-sdk-test.yml +++ b/.github/workflows/embedded-sdk-test.yml @@ -16,7 +16,7 @@ concurrency: jobs: embedded-sdk-test: - runs-on: ubuntu-24.04 + runs-on: ubuntu-slim defaults: run: working-directory: superset-embedded-sdk diff --git a/.github/workflows/generate-FOSSA-report.yml b/.github/workflows/generate-FOSSA-report.yml index 125a0b1d696..f9ea4b54ce4 100644 --- a/.github/workflows/generate-FOSSA-report.yml +++ b/.github/workflows/generate-FOSSA-report.yml @@ -11,7 +11,7 @@ permissions: jobs: config: - runs-on: ubuntu-24.04 + runs-on: ubuntu-slim outputs: has-secrets: ${{ steps.check.outputs.has-secrets }} steps: @@ -29,7 +29,7 @@ jobs: needs: config if: needs.config.outputs.has-secrets name: Generate Report - runs-on: ubuntu-24.04 + runs-on: ubuntu-slim steps: - name: "Checkout ${{ github.ref }} ( ${{ github.sha }} )" uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0 diff --git a/.github/workflows/github-action-validator.yml b/.github/workflows/github-action-validator.yml index 73b1e6bb3d7..56df7e28c6c 100644 --- a/.github/workflows/github-action-validator.yml +++ b/.github/workflows/github-action-validator.yml @@ -19,7 +19,7 @@ concurrency: jobs: validate-all-ghas: - runs-on: ubuntu-24.04 + runs-on: ubuntu-slim permissions: contents: read # Required for the zizmor action to upload its SARIF results to diff --git a/.github/workflows/issue_creation.yml b/.github/workflows/issue_creation.yml index fe3ef99816e..e97eec31c72 100644 --- a/.github/workflows/issue_creation.yml +++ b/.github/workflows/issue_creation.yml @@ -9,7 +9,7 @@ on: jobs: superbot-orglabel: - runs-on: ubuntu-24.04 + runs-on: ubuntu-slim permissions: contents: read pull-requests: write diff --git a/.github/workflows/labeler.yml b/.github/workflows/labeler.yml index e5ac346bcbc..0c84e3b5394 100644 --- a/.github/workflows/labeler.yml +++ b/.github/workflows/labeler.yml @@ -12,7 +12,7 @@ jobs: permissions: contents: read pull-requests: write - runs-on: ubuntu-24.04 + runs-on: ubuntu-slim steps: - uses: actions/labeler@f27b608878404679385c85cfa523b85ccb86e213 # v6.1.0 with: diff --git a/.github/workflows/latest-release-tag.yml b/.github/workflows/latest-release-tag.yml index 3d08fa517e5..5b9b73fb0b3 100644 --- a/.github/workflows/latest-release-tag.yml +++ b/.github/workflows/latest-release-tag.yml @@ -6,7 +6,7 @@ on: jobs: latest-release: name: Add/update tag to new release - runs-on: ubuntu-24.04 + runs-on: ubuntu-slim permissions: contents: write diff --git a/.github/workflows/license-check.yml b/.github/workflows/license-check.yml index 95668258611..dbc76f5ac74 100644 --- a/.github/workflows/license-check.yml +++ b/.github/workflows/license-check.yml @@ -15,7 +15,7 @@ concurrency: jobs: license_check: name: License Check - runs-on: ubuntu-24.04 + runs-on: ubuntu-slim steps: - name: "Checkout ${{ github.ref }} ( ${{ github.sha }} )" uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0 diff --git a/.github/workflows/no-hold-label.yml b/.github/workflows/no-hold-label.yml index 4141def2fdf..3a525b3bc4f 100644 --- a/.github/workflows/no-hold-label.yml +++ b/.github/workflows/no-hold-label.yml @@ -17,7 +17,7 @@ concurrency: jobs: check-hold-label: - runs-on: ubuntu-24.04 + runs-on: ubuntu-slim steps: - name: Check for 'hold' label uses: actions/github-script@3a2844b7e9c422d3c10d287c895573f7108da1b3 # v9.0.0 diff --git a/.github/workflows/pr-lint.yml b/.github/workflows/pr-lint.yml index 735c1ebd6f5..b525f1343c1 100644 --- a/.github/workflows/pr-lint.yml +++ b/.github/workflows/pr-lint.yml @@ -15,7 +15,7 @@ concurrency: jobs: lint-check: - runs-on: ubuntu-24.04 + runs-on: ubuntu-slim permissions: contents: read pull-requests: write diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml index b60b8a8d725..3242a44e116 100644 --- a/.github/workflows/release.yml +++ b/.github/workflows/release.yml @@ -11,7 +11,7 @@ permissions: jobs: config: - runs-on: ubuntu-24.04 + runs-on: ubuntu-slim outputs: has-secrets: ${{ steps.check.outputs.has-secrets }} steps: diff --git a/.github/workflows/superset-helm-lint.yml b/.github/workflows/superset-helm-lint.yml index dcb1d6f233b..d51c416584e 100644 --- a/.github/workflows/superset-helm-lint.yml +++ b/.github/workflows/superset-helm-lint.yml @@ -16,7 +16,7 @@ concurrency: jobs: lint-test: - runs-on: ubuntu-24.04 + runs-on: ubuntu-slim steps: - name: "Checkout ${{ github.ref }} ( ${{ github.sha }} )" uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0 diff --git a/.github/workflows/superset-websocket.yml b/.github/workflows/superset-websocket.yml index 12675d42bce..74c6e12a535 100644 --- a/.github/workflows/superset-websocket.yml +++ b/.github/workflows/superset-websocket.yml @@ -21,7 +21,7 @@ concurrency: jobs: app-checks: - runs-on: ubuntu-24.04 + runs-on: ubuntu-slim timeout-minutes: 20 steps: - name: "Checkout ${{ github.ref }} ( ${{ github.sha }} )" diff --git a/.github/workflows/tag-release.yml b/.github/workflows/tag-release.yml index 7488c555568..5f7aff949df 100644 --- a/.github/workflows/tag-release.yml +++ b/.github/workflows/tag-release.yml @@ -32,7 +32,7 @@ concurrency: jobs: config: - runs-on: ubuntu-24.04 + runs-on: ubuntu-slim outputs: has-secrets: ${{ steps.check.outputs.has-secrets }} steps: diff --git a/.github/workflows/tech-debt.yml b/.github/workflows/tech-debt.yml index 1224ceb33fe..62cb3a73a48 100644 --- a/.github/workflows/tech-debt.yml +++ b/.github/workflows/tech-debt.yml @@ -11,7 +11,7 @@ permissions: jobs: config: - runs-on: ubuntu-24.04 + runs-on: ubuntu-slim outputs: has-secrets: ${{ steps.check.outputs.has-secrets }} steps: @@ -28,7 +28,7 @@ jobs: process-and-upload: needs: config if: needs.config.outputs.has-secrets - runs-on: ubuntu-24.04 + runs-on: ubuntu-slim name: Generate Reports steps: - name: Checkout Repository diff --git a/.github/workflows/welcome-new-users.yml b/.github/workflows/welcome-new-users.yml index 8f1dd1fd4e1..20971dad370 100644 --- a/.github/workflows/welcome-new-users.yml +++ b/.github/workflows/welcome-new-users.yml @@ -7,7 +7,7 @@ on: jobs: welcome: - runs-on: ubuntu-24.04 + runs-on: ubuntu-slim if: github.event.pull_request.author_association == 'FIRST_TIME_CONTRIBUTOR' permissions: pull-requests: write