industrial-edge-insights-multimodal: DBS github workflow fix (#916)

pooja-intel · web-flow · commit 9480ed085f98 · 2025-10-31T16:31:40.000+05:30
This PR fixes the DBS (database) workflow in the industrial-edge-insights GitHub Actions workflow by adding the HOST_IP environment variable configuration and correcting scan names from "Time Series" to "Multimodal". The changes also reorder the CWD variable assignment to occur after changing directories

Signed-off-by: Pooja Kumbharkar &lt;pooja.kumbharkar@intel.com&gt;
diff --git a/.github/workflows/industrial-edge-insights-time-series-scans.yml b/.github/workflows/industrial-edge-insights-time-series-scans.yml
@@ -2,8 +2,8 @@
 # SPDX-FileCopyrightText: (C) 2025 Intel Corporation
 # SPDX-License-Identifier: Apache-2.0
 
-name: "[Industrial Edge Insights Time Series] SDLe Scans"
-run-name: "[Industrial Edge Insights Time Series] SDLe Scans workflow (by @${{ github.actor }} via ${{ github.event_name }})"
+name: "[Industrial Edge Insights Multimodal and Time Series] SDLe Scans"
+run-name: "[Industrial Edge Insights Multimodal and Time Series] SDLe Scans workflow (by @${{ github.actor }} via ${{ github.event_name }})"
 
 
 # Only run at most 1 workflow concurrently per PR, unlimited for branches
@@ -77,7 +77,6 @@ jobs:
         run: |
           pwd
           CWD=$(pwd)
-          cd manufacturing-ai-suite/industrial-edge-insights-time-series/
           trivy --version
           which trivy
           trivy image --download-db-only
@@ -164,7 +163,7 @@ jobs:
         shell: bash
         run: |
           pwd
-          cd manufacturing-ai-suite/industrial-edge-insights-time-series/
+          CWD=$(pwd)
           trivy --version
           which trivy
           trivy image --download-db-only
@@ -209,7 +208,7 @@ jobs:
               CWD=$(pwd)
               if [[ "${{ inputs.application }}" == "time-series" || "${{ inputs.application }}" == "both" ]]; then
                 echo "Building Time Series Sample app and scanning docker images"
-                cd manufacturing-ai-suite/industrial-edge-insights-time-series/
+                cd $CWD/manufacturing-ai-suite/industrial-edge-insights-time-series/
                 make down
 
                 OPC_UA_SERVER_IMAGE=$(grep '^OPC_UA_SERVER_IMAGE=' .env | cut -d'=' -f2)
@@ -246,7 +245,7 @@ jobs:
 
               if [[ "${{ inputs.application }}" == "multimodal" || "${{ inputs.application }}" == "both" ]]; then
                 echo "Building Multimodal Weld Defect Detection Sample app and scanning docker images"
-                cd manufacturing-ai-suite/industrial-edge-insights-multimodal/
+                cd $CWD/manufacturing-ai-suite/industrial-edge-insights-multimodal/
                 make down
 
                 WELD_SIMULATOR_IMAGE=$(grep '^WELD_SIMULATOR_IMAGE=' .env | cut -d'=' -f2)
@@ -316,7 +315,6 @@ jobs:
         shell: bash
         run: |
           pwd
-          cd manufacturing-ai-suite/industrial-edge-insights-time-series/
           trivy --version
           which trivy
           trivy image --download-db-only
@@ -359,6 +357,16 @@ jobs:
             cd manufacturing-ai-suite/industrial-edge-insights-time-series/
             make gen_helm_charts
             cd helm
+            INFLUXDB_USERNAME=$(cat /dev/urandom | tr -dc 'a-zA-Z' | head -c 8)
+            INFLUXDB_PASSWORD=$(openssl rand -hex 10)
+            VISUALIZER_GRAFANA_USER=$(cat /dev/urandom | tr -dc 'a-zA-Z' | head -c 8)
+            VISUALIZER_GRAFANA_PASSWORD=$(openssl rand -hex 10)
+
+            sed -i "s/INFLUXDB_USERNAME:.*/INFLUXDB_USERNAME: ${INFLUXDB_USERNAME}/g" values.yaml
+            sed -i "s/INFLUXDB_PASSWORD:.*/INFLUXDB_PASSWORD: ${INFLUXDB_PASSWORD}/g" values.yaml
+            sed -i "s/VISUALIZER_GRAFANA_USER:.*/VISUALIZER_GRAFANA_USER: ${VISUALIZER_GRAFANA_USER}/g" values.yaml
+            sed -i "s/VISUALIZER_GRAFANA_PASSWORD:.*/VISUALIZER_GRAFANA_PASSWORD: ${VISUALIZER_GRAFANA_PASSWORD}/g" values.yaml
+
             trivy config . >> trivy-timeseries-helm.txt
           fi
           
@@ -405,10 +413,10 @@ jobs:
         include:
           - dockerfile-path: manufacturing-ai-suite/industrial-edge-insights-multimodal/weld-data-simulator/Dockerfile
             output-report-path: trivy-weld-simulator-dockerfile.json
-            scan-name: Time Series Weld Data Simulator Dockerfile
+            scan-name: Multimodal Weld Data Simulator Dockerfile
           - dockerfile-path: manufacturing-ai-suite/industrial-edge-insights-multimodal/fusion-analytics/Dockerfile
             output-report-path: trivy-fusion-analytics-dockerfile.json
-            scan-name: Time Series Fusion Analytics Dockerfile
+            scan-name: Multimodal Fusion Analytics Dockerfile
     uses: open-edge-platform/edge-ai-libraries/.github/workflows/trivy-config-mode.yaml@e6e04af3dbca805db9118b85a22ad2998f7eec39
     with:
       dockerfile-path: ${{ matrix.dockerfile-path }}
@@ -452,7 +460,7 @@ jobs:
         pwd
     - name: Convert JSON to CSV
       run: |
-        python3 <<EOF
+        cat > convert_json_to_csv.py << 'EOF'
         import json
         import csv
         import glob
@@ -481,6 +489,7 @@ jobs:
                         "test_name": issue["test_name"]
                     })
         EOF
+        python3 convert_json_to_csv.py
     - name: Upload Scan Reports
       uses: actions/upload-artifact@v4
       with:
@@ -673,14 +682,16 @@ jobs:
           VISUALIZER_GRAFANA_PASSWORD=$(openssl rand -hex 10)
           MTX_WEBRTCICESERVERS2_0_USERNAME=$(cat /dev/urandom | tr -dc 'a-zA-Z' | head -c 8)
           MTX_WEBRTCICESERVERS2_0_PASSWORD=$(openssl rand -hex 10)
+          HOST_IP=$(hostname -I | awk '{print $1}')
 
           sed -i "s/INFLUXDB_USERNAME=.*/INFLUXDB_USERNAME=${INFLUXDB_USERNAME}/g" .env
           sed -i "s/INFLUXDB_PASSWORD=.*/INFLUXDB_PASSWORD=${INFLUXDB_PASSWORD}/g" .env
           sed -i "s/VISUALIZER_GRAFANA_USER=.*/VISUALIZER_GRAFANA_USER=${VISUALIZER_GRAFANA_USER}/g" .env
           sed -i "s/VISUALIZER_GRAFANA_PASSWORD=.*/VISUALIZER_GRAFANA_PASSWORD=${VISUALIZER_GRAFANA_PASSWORD}/g" .env
           sed -i "s/MTX_WEBRTCICESERVERS2_0_USERNAME=.*/MTX_WEBRTCICESERVERS2_0_USERNAME=${MTX_WEBRTCICESERVERS2_0_USERNAME}/g" .env
           sed -i "s/MTX_WEBRTCICESERVERS2_0_PASSWORD=.*/MTX_WEBRTCICESERVERS2_0_PASSWORD=${MTX_WEBRTCICESERVERS2_0_PASSWORD}/g" .env
- 
+          sed -i "s/HOST_IP=.*/HOST_IP=${HOST_IP}/g" .env
+
           make build
           echo "Deploying using mqtt ingestion"
           make up
diff --git a/manufacturing-ai-suite/industrial-edge-insights-multimodal/weld-data-simulator/Dockerfile b/manufacturing-ai-suite/industrial-edge-insights-multimodal/weld-data-simulator/Dockerfile
@@ -7,7 +7,7 @@
 FROM python:3.13-slim
 
 # Install OpenCV dependencies
-RUN apt-get update && apt-get install -y \
+RUN apt-get update && apt-get install -y --no-install-recommends \
     libgl1 \
     libglib2.0-0 \ 
     ffmpeg\
