The GitHub Actions job "Tests" on airflow.git/fix/eks-pod-operator-credential-refresh-issue-57585 has failed. Run started by GitHub user aviralgarg05 (triggered by vincbeck).
Head commit for run: 3e2fcfd25640c00c44e4a4658db1a3ebaf59c002 / aviralgarg05 <[email protected]> Address PR review feedback: improve security and documentation 1. Fix CodeQL security alert for clear-text credential storage: - Use os.open with O_WRONLY|O_TRUNC and restrictive permissions (0600) - Use os.fdopen to properly handle file descriptor - Add proper exception handling for file descriptor cleanup - Match the same security pattern used in EksHook._secure_credential_context 2. Address vincbeck's review question about where 401 handling occurs: - Updated _refresh_cached_properties docstring with detailed call chain - Documents that KubernetesPodOperator._handle_api_exception triggers refresh - References the exact file path: providers/cncf/kubernetes/operators/pod.py - Explains the complete flow from 401 error to credential refresh 3. Move os and stat imports to module level for consistency with codebase style Report URL: https://github.com/apache/airflow/actions/runs/19969022093 With regards, GitHub Actions via GitBox --------------------------------------------------------------------- To unsubscribe, e-mail: [email protected] For additional commands, e-mail: [email protected]
