Skip to content

industrial-edge-insights-multimodal: DBS github workflow fix #916

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Merged
merged 5 commits into from
Oct 31, 2025
Merged

industrial-edge-insights-multimodal: DBS github workflow fix #916

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
5 commits
Select commit Hold shift + click to select a range
a98ffd1
industrial-edge-insights-multimodal: DSBS github workflow fix
pooja-intel Oct 31, 2025
d82d63f
industrial-edge-insights-multimodal: Trivy scan fix
pooja-intel Oct 31, 2025
fc89156
industrial-edge-insights-mltimodal: Trivy dockerfile scan fix
pooja-intel Oct 31, 2025
8cbd826
industrial-edge-insights-time-series: Updated the scan workflow name
pooja-intel Oct 31, 2025
7c902a9
industrial-edge-insights-time-series: bandit workflow scan fix
pooja-intel Oct 31, 2025
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
33 changes: 22 additions & 11 deletions .github/workflows/industrial-edge-insights-time-series-scans.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -2,8 +2,8 @@
# SPDX-FileCopyrightText: (C) 2025 Intel Corporation
# SPDX-License-Identifier: Apache-2.0

name: "[Industrial Edge Insights Time Series] SDLe Scans"
run-name: "[Industrial Edge Insights Time Series] SDLe Scans workflow (by @${{ github.actor }} via ${{ github.event_name }})"
name: "[Industrial Edge Insights Multimodal and Time Series] SDLe Scans"
run-name: "[Industrial Edge Insights Multimodal and Time Series] SDLe Scans workflow (by @${{ github.actor }} via ${{ github.event_name }})"


# Only run at most 1 workflow concurrently per PR, unlimited for branches
Expand Down Expand Up @@ -77,7 +77,6 @@ jobs:
run: |
pwd
CWD=$(pwd)
cd manufacturing-ai-suite/industrial-edge-insights-time-series/
trivy --version
which trivy
trivy image --download-db-only
Expand Down Expand Up @@ -164,7 +163,7 @@ jobs:
shell: bash
run: |
pwd
cd manufacturing-ai-suite/industrial-edge-insights-time-series/
CWD=$(pwd)
trivy --version
which trivy
trivy image --download-db-only
Expand Down Expand Up @@ -209,7 +208,7 @@ jobs:
CWD=$(pwd)
if [[ "${{ inputs.application }}" == "time-series" || "${{ inputs.application }}" == "both" ]]; then
echo "Building Time Series Sample app and scanning docker images"
cd manufacturing-ai-suite/industrial-edge-insights-time-series/
cd $CWD/manufacturing-ai-suite/industrial-edge-insights-time-series/
make down

OPC_UA_SERVER_IMAGE=$(grep '^OPC_UA_SERVER_IMAGE=' .env | cut -d'=' -f2)
Expand Down Expand Up @@ -246,7 +245,7 @@ jobs:

if [[ "${{ inputs.application }}" == "multimodal" || "${{ inputs.application }}" == "both" ]]; then
echo "Building Multimodal Weld Defect Detection Sample app and scanning docker images"
cd manufacturing-ai-suite/industrial-edge-insights-multimodal/
cd $CWD/manufacturing-ai-suite/industrial-edge-insights-multimodal/
make down

WELD_SIMULATOR_IMAGE=$(grep '^WELD_SIMULATOR_IMAGE=' .env | cut -d'=' -f2)
Expand Down Expand Up @@ -316,7 +315,6 @@ jobs:
shell: bash
run: |
pwd
cd manufacturing-ai-suite/industrial-edge-insights-time-series/
trivy --version
which trivy
trivy image --download-db-only
Expand Down Expand Up @@ -359,6 +357,16 @@ jobs:
cd manufacturing-ai-suite/industrial-edge-insights-time-series/
make gen_helm_charts
cd helm
INFLUXDB_USERNAME=$(cat /dev/urandom | tr -dc 'a-zA-Z' | head -c 8)
INFLUXDB_PASSWORD=$(openssl rand -hex 10)
VISUALIZER_GRAFANA_USER=$(cat /dev/urandom | tr -dc 'a-zA-Z' | head -c 8)
VISUALIZER_GRAFANA_PASSWORD=$(openssl rand -hex 10)

sed -i "s/INFLUXDB_USERNAME:.*/INFLUXDB_USERNAME: ${INFLUXDB_USERNAME}/g" values.yaml
sed -i "s/INFLUXDB_PASSWORD:.*/INFLUXDB_PASSWORD: ${INFLUXDB_PASSWORD}/g" values.yaml
sed -i "s/VISUALIZER_GRAFANA_USER:.*/VISUALIZER_GRAFANA_USER: ${VISUALIZER_GRAFANA_USER}/g" values.yaml
sed -i "s/VISUALIZER_GRAFANA_PASSWORD:.*/VISUALIZER_GRAFANA_PASSWORD: ${VISUALIZER_GRAFANA_PASSWORD}/g" values.yaml

trivy config . >> trivy-timeseries-helm.txt
fi

Expand Down Expand Up @@ -405,10 +413,10 @@ jobs:
include:
- dockerfile-path: manufacturing-ai-suite/industrial-edge-insights-multimodal/weld-data-simulator/Dockerfile
output-report-path: trivy-weld-simulator-dockerfile.json
scan-name: Time Series Weld Data Simulator Dockerfile
scan-name: Multimodal Weld Data Simulator Dockerfile
- dockerfile-path: manufacturing-ai-suite/industrial-edge-insights-multimodal/fusion-analytics/Dockerfile
output-report-path: trivy-fusion-analytics-dockerfile.json
scan-name: Time Series Fusion Analytics Dockerfile
scan-name: Multimodal Fusion Analytics Dockerfile
uses: open-edge-platform/edge-ai-libraries/.github/workflows/trivy-config-mode.yaml@e6e04af3dbca805db9118b85a22ad2998f7eec39
with:
dockerfile-path: ${{ matrix.dockerfile-path }}
Expand Down Expand Up @@ -452,7 +460,7 @@ jobs:
pwd
- name: Convert JSON to CSV
run: |
python3 <<EOF
cat > convert_json_to_csv.py << 'EOF'
import json
import csv
import glob
Expand Down Expand Up @@ -481,6 +489,7 @@ jobs:
"test_name": issue["test_name"]
})
EOF
python3 convert_json_to_csv.py
- name: Upload Scan Reports
uses: actions/upload-artifact@v4
with:
Expand Down Expand Up @@ -673,14 +682,16 @@ jobs:
VISUALIZER_GRAFANA_PASSWORD=$(openssl rand -hex 10)
MTX_WEBRTCICESERVERS2_0_USERNAME=$(cat /dev/urandom | tr -dc 'a-zA-Z' | head -c 8)
MTX_WEBRTCICESERVERS2_0_PASSWORD=$(openssl rand -hex 10)
HOST_IP=$(hostname -I | awk '{print $1}')

sed -i "s/INFLUXDB_USERNAME=.*/INFLUXDB_USERNAME=${INFLUXDB_USERNAME}/g" .env
sed -i "s/INFLUXDB_PASSWORD=.*/INFLUXDB_PASSWORD=${INFLUXDB_PASSWORD}/g" .env
sed -i "s/VISUALIZER_GRAFANA_USER=.*/VISUALIZER_GRAFANA_USER=${VISUALIZER_GRAFANA_USER}/g" .env
sed -i "s/VISUALIZER_GRAFANA_PASSWORD=.*/VISUALIZER_GRAFANA_PASSWORD=${VISUALIZER_GRAFANA_PASSWORD}/g" .env
sed -i "s/MTX_WEBRTCICESERVERS2_0_USERNAME=.*/MTX_WEBRTCICESERVERS2_0_USERNAME=${MTX_WEBRTCICESERVERS2_0_USERNAME}/g" .env
sed -i "s/MTX_WEBRTCICESERVERS2_0_PASSWORD=.*/MTX_WEBRTCICESERVERS2_0_PASSWORD=${MTX_WEBRTCICESERVERS2_0_PASSWORD}/g" .env

sed -i "s/HOST_IP=.*/HOST_IP=${HOST_IP}/g" .env

make build
echo "Deploying using mqtt ingestion"
make up
Expand Down
2 changes: 1 addition & 1 deletion manufacturing-ai-suite/industrial-edge-insights-multimodal/weld-data-simulator/Dockerfile
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -7,7 +7,7 @@
FROM python:3.13-slim

# Install OpenCV dependencies
RUN apt-get update && apt-get install -y \
RUN apt-get update && apt-get install -y --no-install-recommends \
libgl1 \
libglib2.0-0 \
ffmpeg\
Expand Down