Page MenuHomePhabricator
Create Task
Maniphest T377023

Add CI step to event schema repositories to test to fail if a schema is deleted
Closed, ResolvedPublic
Actions

Description

In https://gitlab.wikimedia.org/repos/data-engineering/schemas-event-secondary/-/merge_requests/13, a schema was deleted before its stream config was removed. This caused canary events and Hive ingestion jobs to fail, as they tried to look up the schema for the stream.

Our documentation states

A schema should never be deleted, but all of the stream related code and configuration can be removed at anytime to stop producing an event stream

We should add a test to jsonschema-tools, or just to gitlab CI, that fails if schemas are deleted.

This might be difficult to do in jsonschema-tools, as it would need to inspect git history.

Details

Related Changes in GitLab:
TitleReferenceAuthorSource BranchDest Branch
CI/CD Check to prevent schema deletionsrepos/data-engineering/schemas-event-primary!27javiermontonfeature/prevent-schema-deletionsmaster
[T377023] - Running prevent_schema_deletions on merge requests.repos/data-engineering/jsonschema-tools!63javiermontonfeature/schema-deletion-on-mrmaster
Use schema-deletion CI Componentrepos/data-engineering/schemas-event-secondary!96javiermontonfeature/prevent-schema-deletions-from-componentmaster
[T377023] - CI/CD Component to prevent schema deletionsrepos/data-engineering/jsonschema-tools!62javiermontonfeature/prevent-schema-deletion-componentmaster
[WIP][T377023] - New CI step to prevent schema deletionsrepos/data-engineering/schemas-event-secondary!91javiermontonfeature/ci-prevent-schema-deletionsmaster
Customize query in GitLab

Related Objects

Event Timeline

Ottomata created this task.Oct 11 2024, 4:28 PM
Restricted Application added a subscriber: Aklapper. · View Herald TranscriptOct 11 2024, 4:28 PM
xcollazo added a comment.Oct 11 2024, 4:39 PM

+1 to do it at Gitlab CI time, as it would be a proactive, rather than reactive, measure.

Ahoelzl moved this task from Incoming (new tickets) to Backlog on the Data-Engineering board.Oct 23 2024, 8:59 PM
Ottomata moved this task from Backlog to Schemas on the Event-Platform board.Oct 25 2024, 1:09 PM
Ottomata mentioned this in T376841: Render human-readable schemas on schema.wikimedia.org.Oct 25 2024, 1:38 PM
JMonton-WMF claimed this task.Oct 27 2025, 11:38 AM
JMonton-WMF edited projects, added: Data-Engineering (Q2 FY25/26 October 1st - December 31th); removed: Data-Engineering.
JMonton-WMF moved this task from Next Up to In progress on the Data-Engineering (Q2 FY25/26 October 1st - December 31th) board.
JMonton-WMF moved this task from In progress to In Review on the Data-Engineering (Q2 FY25/26 October 1st - December 31th) board.Oct 28 2025, 5:13 PM
Ottomata added a comment.Oct 28 2025, 5:14 PM

@JMonton-WMF thanks for the patch!

Q: did you explore the possibility of adding this test to the regular jsonschema-tools test suite? If possible, I guess we'd want to add it to the 'compatibility' tests?

https://gitlab.wikimedia.org/repos/data-engineering/jsonschema-tools/-/tree/master/lib/tests?ref_type=heads

JMonton-WMF added a comment.Oct 28 2025, 5:18 PM

I didn't know how that worked. Let me review it and I'll try to move the test there! I'm guessing this is a way of having the same tests in both primary and secondary repositories, right?

Ottomata added a comment.Oct 28 2025, 5:33 PM

Ya exactly.

E.g.

https://gitlab.wikimedia.org/repos/data-engineering/schemas-event-primary/-/blob/master/test/jsonschema/repository.test.js?ref_type=heads

and

https://gitlab.wikimedia.org/repos/data-engineering/schemas-event-secondary/-/blob/master/test/jsonschema/repository.test.js?ref_type=heads

If we can do it this way, then we should also add the ability to skip your new test via jsonschema-tools skipSchemaTestCases config, like here. There are probably cases when we DO want to delete schemas, we just want CI to yell about it unless we are really sure.

JMonton-WMF moved this task from In Review to Next Up on the Data-Engineering (Q2 FY25/26 October 1st - December 31th) board.Oct 30 2025, 11:43 AM
JMonton-WMF moved this task from Next Up to In progress on the Data-Engineering (Q2 FY25/26 October 1st - December 31th) board.Nov 21 2025, 2:00 PM
CodeReviewBot added a comment.Nov 21 2025, 3:50 PM

javiermonton updated https://gitlab.wikimedia.org/repos/data-engineering/schemas-event-secondary/-/merge_requests/91

[WIP][T377023] - New CI step to prevent schema deletions

JMonton-WMF added a comment.Nov 21 2025, 3:55 PM

Some days ago I created a new CI check in a MR to check for deletions, but @Ottomata suggested that it could be moved to the jsonschema-tools repository.
The issue with this MR is that it should be created on every repository using json-schemas.

I started implementing this in the compatibility checks of jsonschema-tools, but I’m not completely convinced about the approach. At first glance, it makes sense to keep all checks within jsonschema-tools, but the “deletion check” feels different. Unlike other checks, it can’t be validated against the current code alone.

The only way I can find to to detect a deleted schema is by relying on Git, and I’m not completely comfortable adding Git-dependent logic inside the library, since that goes beyond its scope. In practice, the check would be based on Git status rather than code status, which doesn’t seem like the library’s responsibility.

For example, testing against HEAD won't work, it still passes the check if a deleted file is committed on a branch. To truly confirm deletion, we’d need to compare against the default branch (origin/master). In my opinion, that kind of check seems better suited for the CI, where Git context and branch changes are already managed, rather than inside the code itself.

In other words, you could use the library in a place without Git, and it will behave differently.

I'd like to get some opinions on this, as I'm not sure if similar checks are done in other places. Any suggestions @tchin @xcollazo ? Do you think the check should be in jsonschema-tools, in the CI only, or any other approach?

Thanks!

xcollazo added a comment.Nov 21 2025, 4:23 PM

I agree this particular check should not be a concern of jsonschema-tools.

+1 to Gitlab CI failing the pipeline if this is violated. We should also be able to override it if, for some reason, we do want to delete.

CodeReviewBot added a project: Patch-For-Review.Nov 24 2025, 1:12 PM

javiermonton opened https://gitlab.wikimedia.org/repos/data-engineering/jsonschema-tools/-/merge_requests/62

[T377023] - CI/CD Component to prevent schema deletions

JMonton-WMF added a comment.Nov 24 2025, 1:29 PM

In aims to move this check to the CI, but keeping it standard from the jsonschema-tools repository, I'd like to go for this proposal:

  • A GitLab CI/CD reusable Component that checks if schemas are deleted in a particular folder against a branch (default branch by default): MR here.
  • The use of this Component on other repositories, like schemas-event-primary and schemas-event-secondary. One MR here

There is no explicit way of skipping this CI step in case we want to delete schemas at some point. I'm not sure if we can simply merge an MR even if this check fails, knowing that we want to do it, or if we should create a way of skipping the CI, like if the MR title includes a text or something like that? I'm not sure if we have similar cases in other repositories.

Any thoughts @xcollazo, @tchin?

xcollazo added a subscriber: brouberol.Nov 24 2025, 9:31 PM

I'm not sure if we have similar cases in other repositories.

@brouberol did setup our peer review CI step for airflow_dags in a way that it can be circumvented if necessary by setting a flag.

Code: https://gitlab.wikimedia.org/repos/data-engineering/airflow-dags/-/blob/main/.ci/ensure_peer_review.py?ref_type=heads
CI definition: https://gitlab.wikimedia.org/repos/data-engineering/airflow-dags/-/blob/main/.gitlab-ci.yml?ref_type=heads#L141-150
Documentation: https://gitlab.wikimedia.org/repos/data-engineering/airflow-dags#deploying-in-an-emergency

I bet we can add such a step to your script definition at https://gitlab.wikimedia.org/repos/data-engineering/jsonschema-tools/-/merge_requests/62.

amastilovic subscribed.Nov 25 2025, 2:05 AM

Ditto what @xcollazo said above. In order to have the desired behavior for this pipeline job, I think you need:

  1. In .gitlab-ci.yaml:
when: manual
allow_failure: false
  1. In your shell script, you need to check for the existence of environment variable CI_BREAK_GLASS_REASON (or whatever you name it, should be documented in README.md) just like airflow-dags does it in the Python script:
if circumvent_reason := os.getenv("CI_BREAK_GLASS_REASON"):
    print(f"Circumventing approval check.\nReason: {circumvent_reason}")
    sys.exit(0)
JMonton-WMF added a comment.Nov 25 2025, 11:49 AM

Thanks both! I've added the changes. Now it requires a manual execution and it can be bypassed by adding the CI_BREAK_GLASS_REASON.

I tried to make it run automatically unless it is manually forced, but it looks like GitLab only allow this kind of behavior on jobs that require a manual trigger, you cannot run it by default, and allow a retry with arguments.

Now it should behave like the Airflow job.

The other MR using this component doesn't need changes, it will pass the CI once the component is merged.

CodeReviewBot added a comment.Nov 25 2025, 11:54 AM

javiermonton closed https://gitlab.wikimedia.org/repos/data-engineering/schemas-event-secondary/-/merge_requests/91

[WIP][T377023] - New CI step to prevent schema deletions

JMonton-WMF moved this task from In progress to In Review on the Data-Engineering (Q2 FY25/26 October 1st - December 31th) board.Nov 25 2025, 2:20 PM
CodeReviewBot added a comment.Nov 25 2025, 3:22 PM

javiermonton merged https://gitlab.wikimedia.org/repos/data-engineering/jsonschema-tools/-/merge_requests/62

[T377023] - CI/CD Component to prevent schema deletions

CodeReviewBot added a comment.Nov 25 2025, 5:40 PM

javiermonton opened https://gitlab.wikimedia.org/repos/data-engineering/jsonschema-tools/-/merge_requests/63

[T377023] - Running prevent_schema_deletions on merge requests.

CodeReviewBot added a comment.Nov 25 2025, 5:56 PM

javiermonton merged https://gitlab.wikimedia.org/repos/data-engineering/jsonschema-tools/-/merge_requests/63

[T377023] - Running prevent_schema_deletions on merge requests.

CodeReviewBot added a comment.Nov 25 2025, 5:59 PM

javiermonton merged https://gitlab.wikimedia.org/repos/data-engineering/schemas-event-secondary/-/merge_requests/96

Use schema-deletion CI Component

CodeReviewBot added a comment.Nov 26 2025, 2:36 PM

javiermonton merged https://gitlab.wikimedia.org/repos/data-engineering/schemas-event-primary/-/merge_requests/27

CI/CD Check to prevent schema deletions

JMonton-WMF moved this task from In Review to Done on the Data-Engineering (Q2 FY25/26 October 1st - December 31th) board.Nov 26 2025, 2:37 PM
Ahoelzl closed this task as Resolved.Dec 10 2025, 12:30 AM
Ottomata added a comment.Dec 18 2025, 7:07 PM

Nice, great solution! Thank you Javier!

Content licensed under Creative Commons Attribution-ShareAlike (CC BY-SA) 4.0 unless otherwise noted; code licensed under GNU General Public License (GPL) 2.0 or later and other open source licenses. By using this site, you agree to the Terms of Use, Privacy Policy, and Code of Conduct. · Wikimedia Foundation · Privacy Policy · Code of Conduct · Terms of Use · Disclaimer · CC-BY-SA · GPL · Credits