added gliner onnx support

.github/workflows/build-publish-image-ics-prod-ecr.yaml

@@ -0,0 +1,89 @@
+name: Build and Publish Image to ICS Production ECR
+concurrency:
+  group: build-ics-prod-ecr-${{github.ref}}
+  cancel-in-progress: true
+on:
+  push:
+    branches:
+      - _prod
+permissions:
+  contents: read
+  packages: read
+env:
+  AWS_REGION: us-east-2
+  DOCKER_PLATFORMS: linux/amd64
+
+jobs:
+  changes:
+    name: Changes
+    runs-on: ubuntu-24.04
+    outputs:
+      docker-images: ${{steps.filter.outputs.docker-images}}
+    steps:
+      - name: Check Out Repo
+        uses: actions/checkout@v5
+      - name: Check for Changed Files
+        uses: dorny/paths-filter@v3
+        id: filter
+        with:
+          filters: |
+            docker-images:
+              - '.github/workflows/build-publish-image-ics-prod-ecr.yaml'
+              - 'presidio-analyzer/**'
+              - '*'
+
+  build-publish-docker-images:
+    needs: changes
+    name: Build and Publish to ICS Production ECR
+    if: needs.changes.outputs.docker-images == 'true'
+    env:
+      DOCKER_REGISTRY: ${{secrets.ICS_PROD_AWS_ACCOUNT}}.dkr.ecr.us-east-2.amazonaws.com
+      AWS_OIDC_ROLE: ${{secrets.ICS_PROD_AWS_GITHUB_OIDC_ROLE_ARN}}
+      BRANCH_NAME: _prod
+    runs-on: ubuntu-22.04
+    permissions:
+      id-token: write
+      contents: read
+    strategy:
+      fail-fast: false
+      matrix:
+        service: ["presidio-analyzer"]
+
+    steps:
+      - name: Check Out Repo
+        uses: actions/checkout@v5
+      - name: Derive Short SHA
+        id: short-sha
+        run: |
+          short_sha=${GITHUB_SHA::7}
+          echo "short_sha=$short_sha" >> $GITHUB_OUTPUT
+      - name: Set up Docker Buildx
+        uses: docker/setup-buildx-action@v3
+      - name: Configure AWS Credentials
+        uses: aws-actions/configure-aws-credentials@v4
+        with:
+          role-to-assume: ${{env.AWS_OIDC_ROLE}}
+          aws-region: ${{env.AWS_REGION}}
+      - name: Current AWS Identity
+        run: aws sts get-caller-identity
+      - name: Login to ECR
+        uses: docker/login-action@v3
+        with:
+          registry: ${{env.DOCKER_REGISTRY}}
+      - name: Free Disk Space (Ubuntu)
+        uses: jlumbroso/free-disk-space@main
+        with:
+          tool-cache: true
+      - name: Build and Push
+        uses: docker/build-push-action@v6
+        env:
+          ECR_NAMESPACE: ics-prod/pii-analyzer
+          NODE_AUTH_TOKEN: ${{ secrets.GITHUB_TOKEN }}
+        with:
+          context: presidio-analyzer
+          file: ${{matrix.service}}/Dockerfile.gliner-edge
+          platforms: ${{env.DOCKER_PLATFORMS}}
+          push: true
+          tags: |
+            ${{env.DOCKER_REGISTRY}}/${{env.ECR_NAMESPACE}}:latest
+            ${{env.DOCKER_REGISTRY}}/${{env.ECR_NAMESPACE}}:${{env.BRANCH_NAME}}-${{steps.short-sha.outputs.short_sha}}-${{github.run_number}}

.github/workflows/build-publish-image-ics-stg-ecr.yaml

@@ -0,0 +1,97 @@
+name: Build and Publish Image to ICS Staging ECR
+concurrency:
+  group: build-ics-stg-ecr-${{github.ref}}
+  cancel-in-progress: true
+on:
+  push:
+    branches:
+      - gliner_integration
+      # XXX Test only
+      - test-ci
+  workflow_dispatch:
+permissions:
+  contents: read
+  packages: read
+env:
+  AWS_REGION: us-east-2
+  # DOCKER_PLATFORMS: linux/amd64,linux/arm64
+  DOCKER_PLATFORMS: linux/amd64
+
+jobs:
+  changes:
+    name: Changes
+    runs-on: ubuntu-24.04
+    outputs:
+      docker-images: ${{steps.filter.outputs.docker-images}}
+    steps:
+      - name: Check Out Repo
+        uses: actions/checkout@v5
+      - name: Check for Changed Files
+        uses: dorny/paths-filter@v3
+        id: filter
+        with:
+          filters: |
+            docker-images:
+              - '.github/workflows/build-publish-image-ics-stg-ecr.yaml'
+              - 'presidio-analyzer/**'
+              - '*'
+
+  build-publish-docker-images:
+    needs: changes
+    name: Build and Publish to ICS Staging ECR
+    if: needs.changes.outputs.docker-images == 'true'
+    env:
+      DOCKER_REGISTRY: ${{secrets.ICS_STG_AWS_ACCOUNT}}.dkr.ecr.us-east-2.amazonaws.com
+      AWS_OIDC_ROLE: ${{secrets.ICS_STG_AWS_GITHUB_OIDC_ROLE_ARN}}
+      BRANCH_NAME: gliner_integration
+    runs-on: ubuntu-22.04
+    permissions:
+      id-token: write
+      contents: read
+    strategy:
+      fail-fast: false
+      matrix:
+        service: ["presidio-analyzer"]
+
+    steps:
+      - name: Check Out Repo
+        uses: actions/checkout@v5
+      - name: Derive Short SHA
+        id: short-sha
+        run: |
+          short_sha=${GITHUB_SHA::7}
+          echo "short_sha=$short_sha" >> $GITHUB_OUTPUT
+      # - name: Set up QEMU
+      #   uses: docker/setup-qemu-action@v3
+      #   with:
+      #     platforms: ${{env.DOCKER_PLATFORMS}}
+      - name: Set up Docker Buildx
+        uses: docker/setup-buildx-action@v3
+      - name: Configure AWS Credentials
+        uses: aws-actions/configure-aws-credentials@v4
+        with:
+          role-to-assume: ${{env.AWS_OIDC_ROLE}}
+          aws-region: ${{env.AWS_REGION}}
+      - name: Current AWS Identity
+        run: aws sts get-caller-identity
+      - name: Login to ECR
+        uses: docker/login-action@v3
+        with:
+          registry: ${{env.DOCKER_REGISTRY}}
+      - name: Free Disk Space (Ubuntu)
+        uses: jlumbroso/free-disk-space@main
+        with:
+          tool-cache: true
+      - name: Build and Push
+        uses: docker/build-push-action@v6
+        env:
+          ECR_NAMESPACE: ics-stg/pii-analyzer
+          NODE_AUTH_TOKEN: ${{ secrets.GITHUB_TOKEN }}
+        with:
+          context: presidio-analyzer
+          file: ${{matrix.service}}/Dockerfile.gliner-edge
+          platforms: ${{env.DOCKER_PLATFORMS}}
+          push: true
+          tags: |
+            ${{env.DOCKER_REGISTRY}}/${{env.ECR_NAMESPACE}}:latest
+            ${{env.DOCKER_REGISTRY}}/${{env.ECR_NAMESPACE}}:${{env.BRANCH_NAME}}-${{steps.short-sha.outputs.short_sha}}-${{github.run_number}}

.github/workflows/build-publish-image-ics-test-ecr.yaml

@@ -0,0 +1,95 @@
+name: Build and Publish Image to ICS Test ECR
+concurrency:
+  group: build-ics-test-ecr-${{github.ref}}
+  cancel-in-progress: true
+on:
+  push:
+    branches:
+      - _test
+  workflow_dispatch:
+permissions:
+  contents: read
+  packages: read
+env:
+  AWS_REGION: us-east-2
+  # DOCKER_PLATFORMS: linux/amd64,linux/arm64
+  DOCKER_PLATFORMS: linux/amd64
+
+jobs:
+  changes:
+    name: Changes
+    runs-on: ubuntu-24.04
+    outputs:
+      docker-images: ${{steps.filter.outputs.docker-images}}
+    steps:
+      - name: Check Out Repo
+        uses: actions/checkout@v5
+      - name: Check for Changed Files
+        uses: dorny/paths-filter@v3
+        id: filter
+        with:
+          filters: |
+            docker-images:
+              - '.github/workflows/build-publish-image-ics-test-ecr.yaml'
+              - 'presidio-analyzer/**'
+              - '*'
+
+  build-publish-docker-images:
+    needs: changes
+    name: Build and Publish to ICS Test ECR
+    if: needs.changes.outputs.docker-images == 'true'
+    env:
+      DOCKER_REGISTRY: ${{secrets.ICS_TEST_AWS_ACCOUNT}}.dkr.ecr.us-east-2.amazonaws.com
+      AWS_OIDC_ROLE: ${{secrets.ICS_TEST_AWS_GITHUB_OIDC_ROLE_ARN}}
+      BRANCH_NAME: _test
+    runs-on: ubuntu-22.04
+    permissions:
+      id-token: write
+      contents: read
+    strategy:
+      fail-fast: false
+      matrix:
+        service: ["presidio-analyzer"]
+
+    steps:
+      - name: Check Out Repo
+        uses: actions/checkout@v5
+      - name: Derive Short SHA
+        id: short-sha
+        run: |
+          short_sha=${GITHUB_SHA::7}
+          echo "short_sha=$short_sha" >> $GITHUB_OUTPUT
+      # - name: Set up QEMU
+      #   uses: docker/setup-qemu-action@v3
+      #   with:
+      #     platforms: ${{env.DOCKER_PLATFORMS}}
+      - name: Set up Docker Buildx
+        uses: docker/setup-buildx-action@v3
+      - name: Configure AWS Credentials
+        uses: aws-actions/configure-aws-credentials@v4
+        with:
+          role-to-assume: ${{env.AWS_OIDC_ROLE}}
+          aws-region: ${{env.AWS_REGION}}
+      - name: Current AWS Identity
+        run: aws sts get-caller-identity
+      - name: Login to ECR
+        uses: docker/login-action@v3
+        with:
+          registry: ${{env.DOCKER_REGISTRY}}
+      - name: Free Disk Space (Ubuntu)
+        uses: jlumbroso/free-disk-space@main
+        with:
+          tool-cache: true
+      - name: Build and Push
+        uses: docker/build-push-action@v6
+        env:
+          ECR_NAMESPACE: ics-test/pii-analyzer
+          NODE_AUTH_TOKEN: ${{ secrets.GITHUB_TOKEN }}
+        with:
+          context: presidio-analyzer
+          file: ${{matrix.service}}/Dockerfile.gliner-edge
+          platforms: ${{env.DOCKER_PLATFORMS}}
+          push: true
+          tags: |
+            ${{env.DOCKER_REGISTRY}}/${{env.ECR_NAMESPACE}}:latest
+            ${{env.DOCKER_REGISTRY}}/${{env.ECR_NAMESPACE}}:${{env.BRANCH_NAME}}-${{steps.short-sha.outputs.short_sha}}-${{github.run_number}}

.gitignore

@@ -90,7 +90,6 @@ ENV/
 env.bak/
 venv.bak/
 *venv/
-poetry.lock
 
 # Spyder project settings
 .spyderproject
@@ -140,4 +139,6 @@ mkdocs/
 
 # Visual Studio
 /.vs
-/TestResults
+/TestResults
+
+.claude