fix(ci): remove explicit AWS credential passing from docker builds

[sara4dev]

Summary

• Security fix: Remove explicit AWS_ACCESS_KEY_ID/AWS_SECRET_ACCESS_KEY passing through CI actions and Dockerfile secret mounts
• BuildKit pods on aws-ci already have IAM access via IRSA (builder-v1-service-account), so sccache discovers credentials automatically through the AWS SDK credential chain
• The previous approach set AWS creds as step-level env vars, and combined with set -x in the build script, caused credentials to leak into build logs via bash trace expansion

Changes

• container/templates/wheel_builder.Dockerfile: Removed all 8 --mount=type=secret,id=aws-key-id / aws-secret-id from RUN steps
• .github/actions/docker-remote-build/action.yml: Removed aws_access_key_id/aws_secret_access_key inputs, env vars, and SECRET_ARGS block
• .github/actions/build-flavor/action.yml: Removed credential inputs and forwarding
• .github/actions/docker-build/action.yml: Removed credential inputs and env vars
• 5 workflow files: Removed secret declarations and forwarding

Test plan

• CI build triggers and completes successfully (sccache picks up IRSA creds automatically)
• Build logs contain no AKIA* patterns or AWS secret key values
• sccache stats in build log show cache hits (confirms S3 connectivity via IRSA)
• Verify builder-v1-service-account IRSA annotation exists on aws-ci cluster

🤖 Generated with Claude Code

---

Summary by CodeRabbit

• Chores
  • Removed explicit AWS access credentials from GitHub Actions definitions and build workflows for improved credential security management.
  • Eliminated direct AWS credential injection from build steps across multiple container and flavor build pipelines.
  • Streamlined Docker remote build configurations by removing credential mount arguments from build commands.

[copy-pr-bot]

This pull request requires additional validation before any workflows can run on NVIDIA's runners.

Pull request vetters can view their responsibilities here.

Contributors can view more details about this message here.

[coderabbitai]

Walkthrough

This change systematically removes AWS credential inputs (aws_access_key_id, aws_secret_access_key) from GitHub Actions, workflows, and Dockerfile BuildKit secret mounts across the CI/CD pipeline. Credentials are no longer explicitly passed via action inputs, workflow secrets, or build secrets.

Changes

Cohort / File(s)	Summary
GitHub Actions Input Removal .github/actions/build-flavor/action.yml, .github/actions/docker-build/action.yml, .github/actions/docker-remote-build/action.yml	Removed aws_access_key_id and aws_secret_access_key input declarations; stopped forwarding AWS credentials to downstream build steps. In docker-remote-build, conditional SECRET_ARGS construction for BuildKit secret mounts was also deleted.
Workflow Secrets Removal .github/workflows/build-flavor.yml, .github/workflows/build-frontend-image.yaml, .github/workflows/build-test-distribute-flavor-matrix.yml, .github/workflows/build-test-distribute-flavor.yml, .github/workflows/container-validation-dynamo.yml, .github/workflows/shared-build-image.yml	Removed AWS_ACCESS_KEY_ID and AWS_SECRET_ACCESS_KEY from workflow secrets definitions and removed corresponding with: parameters when invoking build actions. Other AWS inputs (region, account ID) remain unchanged.
Dockerfile BuildKit Secrets Removal container/templates/wheel_builder.Dockerfile	Removed --secret aws-key-id --secret aws-secret-id mount arguments from multiple RUN steps (FFmpeg, UCX, libfabric, AWS SDK C++, ai-dynamo, nixl, kvbm builds); steps now omit AWS credential environment variables while retaining sccache and cache mounts.

Estimated code review effort

🎯 3 (Moderate) | ⏱️ ~22 minutes

🚥 Pre-merge checks | ✅ 3

✅ Passed checks (3 passed)

Check name	Status	Explanation
Title check	✅ Passed	The title clearly and accurately summarizes the main security-focused change: removing explicit AWS credential passing from Docker builds across CI actions and Dockerfiles.
Description check	✅ Passed	The description covers the overview, detailed changes across multiple files, and a test plan, though it deviates from the template structure with additional context about IRSA and security implications.
Docstring Coverage	✅ Passed	No functions found in the changed files to evaluate docstring coverage. Skipping docstring coverage check.

_{✏️ Tip: You can configure your own custom pre-merge checks in the settings.}

---

Thanks for using CodeRabbit! It's free for OSS, and your support helps us grow. If you like it, consider giving us a shout-out.

❤️ Share

• X
• Mastodon
• Reddit
• LinkedIn

_{Comment @coderabbitai help to get the list of available commands and usage tips.}

[coderabbitai]

🧹 Nitpick comments (1)

container/templates/wheel_builder.Dockerfile (1)

570-599: LGTM — kvbm wheel build step.

Cache mounts retained, secret mounts dropped; auditwheel repair path unchanged.

One cross-file follow-up worth noting: container/use-sccache.sh (lines 97–99) still documents that S3 credentials are expected to be mounted via --mount=type=secret. Now that all Dockerfile RUN steps rely on IRSA/AWS SDK credential chain instead, consider updating that comment in a follow-up so the script's documentation matches the new CI model and future maintainers aren't sent looking for secret mounts that no longer exist.

🤖 Prompt for AI Agents

Verify each finding against the current code and only fix it if needed.

In `@container/templates/wheel_builder.Dockerfile` around lines 570 - 599, The
comment in the use-sccache.sh script (use-sccache.sh around the documented block
at lines that mention S3 credential mounting) still instructs users to provide
S3 credentials via --mount=type=secret; update that comment to reflect the new
CI model by removing the secret-mount guidance and instead state that the script
relies on the AWS SDK/IRSA credential chain (environment, instance role, or
IRSA) for S3 access, and optionally note any fallback behavior or env var names
the script checks so future maintainers know where to look.

🤖 Prompt for all review comments with AI agents

Verify each finding against the current code and only fix it if needed.

Nitpick comments:
In `@container/templates/wheel_builder.Dockerfile`:
- Around line 570-599: The comment in the use-sccache.sh script (use-sccache.sh
around the documented block at lines that mention S3 credential mounting) still
instructs users to provide S3 credentials via --mount=type=secret; update that
comment to reflect the new CI model by removing the secret-mount guidance and
instead state that the script relies on the AWS SDK/IRSA credential chain
(environment, instance role, or IRSA) for S3 access, and optionally note any
fallback behavior or env var names the script checks so future maintainers know
where to look.

---

ℹ️ Review info

⚙️ Run configuration

Configuration used: Path: .coderabbit.yaml

Review profile: CHILL

Plan: Pro

Run ID: 4bf4ba12-82c0-4379-a7f8-9a1e5dd96632

📥 Commits

Reviewing files that changed from the base of the PR and between 5b03a59 and 27a9f0d.

📒 Files selected for processing (10)

• .github/actions/build-flavor/action.yml
• .github/actions/docker-build/action.yml
• .github/actions/docker-remote-build/action.yml
• .github/workflows/build-flavor.yml
• .github/workflows/build-frontend-image.yaml
• .github/workflows/build-test-distribute-flavor-matrix.yml
• .github/workflows/build-test-distribute-flavor.yml
• .github/workflows/container-validation-dynamo.yml
• .github/workflows/shared-build-image.yml
• container/templates/wheel_builder.Dockerfile

💤 Files with no reviewable changes (8)

• .github/workflows/shared-build-image.yml
• .github/workflows/build-flavor.yml
• .github/workflows/build-test-distribute-flavor.yml
• .github/workflows/build-frontend-image.yaml
• .github/workflows/container-validation-dynamo.yml
• .github/workflows/build-test-distribute-flavor-matrix.yml
• .github/actions/docker-build/action.yml
• .github/actions/build-flavor/action.yml

[devin-ai-integration]

✅ Devin Review: No Issues Found

Devin Review analyzed this PR and found no potential bugs to report.

View in Devin Review to see 3 additional findings.

[devin-ai-integration]

Devin Review found 1 new potential issue.

View 5 additional findings in Devin Review.

[devin-ai-integration]

🔴 PIPESTATUS overwritten by credential cleanup command, silently masking build failures

The credential cleanup command if [ -n "${SECRET_DIR:-}" ]; then rm -rf "$SECRET_DIR"; fi (line 187) is inserted between the docker buildx build ... | tee pipeline (line 184) and BUILD_EXIT_CODE=${PIPESTATUS[0]} (line 189). In bash, PIPESTATUS is reset after every command, so by the time line 189 executes, PIPESTATUS[0] reflects the exit status of the if/rm compound command (almost always 0), not the docker build. This means if the docker build fails, BUILD_EXIT_CODE will still be 0, exit ${BUILD_EXIT_CODE} will succeed, and the CI step will incorrectly report success.

The old code (before this PR) correctly placed BUILD_EXIT_CODE=${PIPESTATUS[0]} immediately after the pipeline with no intervening commands.

Suggested change

	# Clean up credential files
	if [ -n "${SECRET_DIR:-}" ]; then rm -rf "$SECRET_DIR"; fi
	BUILD_EXIT_CODE=${PIPESTATUS[0]}
	BUILD_EXIT_CODE=${PIPESTATUS[0]}
	# Clean up credential files
	if [ -n "${SECRET_DIR:-}" ]; then rm -rf "$SECRET_DIR"; fi

---

Was this helpful? React with 👍 or 👎 to provide feedback.

[dmitry-tokarev-nv]

closing in favor of #8324