Updates

Author: tomwhite

.github/workflows/build-runtime.yml

@@ -14,6 +14,7 @@ permissions:
 
 env:
   PYTHON_VERSION: '3.12'
+  RUNTIME_NAME: 'cubed-runtime'
 
 jobs:
   build:
@@ -46,19 +47,13 @@ jobs:
       - name: Install Lithops
         run: pip install 'lithops[aws]'
 
-      - name: Set runtime name
-        id: runtime
-        run: |
-          name=$(echo '${{ github.event.repository.name }}' | tr '[:upper:]' '[:lower:]' | sed 's/[^a-z0-9-]/-/g')
-          echo "name=$name" >> $GITHUB_OUTPUT
-
       - name: Copy Lithops config
         run: |
           mkdir -p ~/.lithops
           cp .lithops/config ~/.lithops/config
 
       - name: Build runtime
-        run: lithops runtime build ${{ steps.runtime.outputs.name }} -b aws_lambda
+        run: lithops runtime build ${{ env.RUNTIME_NAME }} -b aws_lambda
 
       - name: Deploy runtime
-        run: lithops runtime deploy ${{ steps.runtime.outputs.name }} -b aws_lambda
+        run: lithops runtime deploy ${{ env.RUNTIME_NAME }} -b aws_lambda

.lithops/config

@@ -7,5 +7,5 @@ region = us-east-1
 
 [aws_lambda]
 execution_role = arn:aws:iam::ACCOUNT_ID:role/ROLE_NAME
-runtime_memory = 512
-runtime_timeout = 300
+runtime_memory = 2000
+runtime_timeout = 180

README.md

@@ -1,13 +1,14 @@
-# Lithops Runtime Builder
+# Cubed Lithops Runtime Builder
 
-A GitHub template repository for building and deploying custom [Lithops](https://lithops-cloud.github.io/) Lambda runtimes via CI — no local Docker required.
+A GitHub template repository for building and deploying [Lithops](https://lithops-cloud.github.io/) Lambda runtimes for [Cubed](https://github.com/cubed-dev/cubed) via CI — no local Docker required.
 
-When you push changes to `requirements.txt`, GitHub Actions builds a Docker image with your dependencies and deploys it as a Lambda container runtime.
+When you push changes to `requirements.txt`, GitHub Actions builds a Docker image with your dependencies and deploys it as a Lambda container runtime named `cubed-runtime`.
 
 ## Prerequisites
 
 - An AWS account
 - A GitHub account
+- The [AWS CLI](https://docs.aws.amazon.com/cli/latest/userguide/getting-started-install.html)
 
 ## Setup
 
@@ -17,47 +18,51 @@ Click **Use this template** → **Create a new repository**.
 
 ### 2. Bootstrap AWS
 
-You need an IAM role that GitHub Actions can assume via OIDC. Create the GitHub OIDC identity provider in your AWS account (if not already present), then create a role with a trust policy scoped to your repo:
-
-```json
-{
-  "Effect": "Allow",
-  "Principal": { "Federated": "arn:aws:iam::ACCOUNT_ID:oidc-provider/token.actions.githubusercontent.com" },
-  "Action": "sts:AssumeRoleWithWebIdentity",
-  "Condition": {
-    "StringLike": { "token.actions.githubusercontent.com:sub": "repo:YOUR_ORG/YOUR_REPO:*" }
-  }
-}
+Run this once from your local machine. Replace `YOUR_ORG` with your GitHub username or organisation (e.g. `octocat`) and `YOUR_REPO` with the name you gave this repository.
+
+```bash
+aws cloudformation deploy \
+  --template-file cloudformation/github-oidc-role.yml \
+  --stack-name cubed-lithops-github-actions \
+  --parameter-overrides GitHubOrg=YOUR_ORG GitHubRepo=YOUR_REPO \
+  --capabilities CAPABILITY_NAMED_IAM
 ```
 
-The role needs permissions for ECR, Lambda, S3, and (optionally) CodeBuild.
+> **Already have a GitHub OIDC provider?** Use `--parameter-overrides GitHubOrg=YOUR_ORG GitHubRepo=YOUR_REPO CreateOIDCProvider=false` to skip creating one.
+
+This creates a GitHub OIDC identity provider (if one doesn't already exist) and an IAM role scoped to your repository. When it completes, retrieve the role ARN:
+
+```bash
+aws cloudformation describe-stacks \
+  --stack-name cubed-lithops-github-actions \
+  --query 'Stacks[0].Outputs[0].OutputValue' \
+  --output text
+```
 
 ### 3. Add the secret
 
 In your repo: **Settings → Secrets and variables → Actions → New repository secret**
 
 | Name | Value |
 |------|-------|
-| `AWS_ROLE_ARN` | `arn:aws:iam::ACCOUNT_ID:role/ROLE_NAME` |
+| `AWS_ROLE_ARN` | *(ARN from the previous step)* |
 
 ### 4. Edit `.lithops/config`
 
 Replace the placeholder values:
 
 ```ini
 [aws]
-region = us-east-1          # your AWS region
+region = us-east-1                                        # your AWS region
 
 [aws_lambda]
 execution_role = arn:aws:iam::ACCOUNT_ID:role/ROLE_NAME   # Lambda execution role
 ```
 
 ### 5. Add your dependencies
 
-Edit `requirements.txt` and push — the CI pipeline builds and deploys your runtime automatically.
-
-The runtime is named after your repository (lowercased).
+Edit `requirements.txt` and push — the CI pipeline builds and deploys the runtime automatically.
 
 ## Manual trigger
 
-You can also trigger a build manually from **Actions → Build and Deploy Lithops Runtime → Run workflow**.
+You can also trigger a build from **Actions → Build and Deploy Lithops Runtime → Run workflow**.

requirements.txt

@@ -1 +1,3 @@
-numpy
+cubed
+s3fs
+# Add extra dependencies below