Merge branch 'main' into feat/add-cognee

Author: hande-k

.github/labeler.yml

@@ -1,4 +1,9 @@
 # Integrations
+integration:alloydb:
+  - changed-files:
+      - any-glob-to-any-file: "integrations/alloydb/**/*"
+      - any-glob-to-any-file: ".github/workflows/alloydb.yml"
+
 integration:aimlapi:
   - changed-files:
       - any-glob-to-any-file: "integrations/aimlapi/**/*"
@@ -29,6 +34,11 @@ integration:astra:
       - any-glob-to-any-file: "integrations/astra/**/*"
       - any-glob-to-any-file: ".github/workflows/astra.yml"
 
+integration:brave:
+  - changed-files:
+      - any-glob-to-any-file: "integrations/brave/**/*"
+      - any-glob-to-any-file: ".github/workflows/brave.yml"
+
 integration:azure-ai-search:
   - changed-files:
       - any-glob-to-any-file: "integrations/azure_ai_search/**/*"
@@ -39,15 +49,20 @@ integration:azure-doc-intelligence:
       - any-glob-to-any-file: "integrations/azure_doc_intelligence/**/*"
       - any-glob-to-any-file: ".github/workflows/azure_doc_intelligence.yml"
 
-integration:cognee:
+integration:chonkie:
   - changed-files:
-      - any-glob-to-any-file: "integrations/cognee/**/*"
-      - any-glob-to-any-file: ".github/workflows/cognee.yml"
+      - any-glob-to-any-file: "integrations/chonkie/**/*"
+      - any-glob-to-any-file: ".github/workflows/chonkie.yml"
 
 integration:chroma:
   - changed-files:
       - any-glob-to-any-file: "integrations/chroma/**/*"
       - any-glob-to-any-file: ".github/workflows/chroma.yml"
+      
+integration:cognee:
+  - changed-files:
+      - any-glob-to-any-file: "integrations/cognee/**/*"
+      - any-glob-to-any-file: ".github/workflows/cognee.yml"
 
 integration:cohere:
   - changed-files:
@@ -69,11 +84,21 @@ integration:docling:
       - any-glob-to-any-file: "integrations/docling/**/*"
       - any-glob-to-any-file: ".github/workflows/docling.yml"
 
+integration:docling-serve:
+  - changed-files:
+      - any-glob-to-any-file: "integrations/docling_serve/**/*"
+      - any-glob-to-any-file: ".github/workflows/docling_serve.yml"
+
 integration:dspy:
   - changed-files:
       - any-glob-to-any-file: "integrations/dspy/**/*"
       - any-glob-to-any-file: ".github/workflows/dspy.yml"
 
+integration:e2b:
+  - changed-files:
+      - any-glob-to-any-file: "integrations/e2b/**/*"
+      - any-glob-to-any-file: ".github/workflows/e2b.yml"
+
 integration:elasticsearch:
   - changed-files:
       - any-glob-to-any-file: "integrations/elasticsearch/**/*"
@@ -84,6 +109,12 @@ integration:faiss:
       - any-glob-to-any-file: "integrations/faiss/**/*"
       - any-glob-to-any-file: ".github/workflows/faiss.yml"
 
+
+integration:falkordb:
+  - changed-files:
+      - any-glob-to-any-file: "integrations/falkordb/**/*"
+      - any-glob-to-any-file: ".github/workflows/falkordb.yml"
+
 integration:fastembed:
   - changed-files:
       - any-glob-to-any-file: "integrations/fastembed/**/*"

.github/utils/validate_version.py

@@ -3,7 +3,7 @@
 
 # * integrations/<INTEGRATION_FOLDER_NAME>-v1.0.0
 # * integrations/<INTEGRATION_FOLDER_NAME>-v1.0.0.post0 (for post-releases)
-INTEGRATION_VERSION_REGEX = r"integrations/([a-zA-Z_]+)-v([0-9]+\.[0-9]+\.[0-9]+(?:\.post[0-9]+)?)"
+INTEGRATION_VERSION_REGEX = r"integrations/([a-zA-Z0-9_]+)-v([0-9]+\.[0-9]+\.[0-9]+(?:\.post[0-9]+)?)"
 
 
 def validate_version_number(tag: str):

.github/workflows/CI_comment_fork_prs.yml

@@ -0,0 +1,108 @@
+name: Core / Notify maintainers on fork PRs not running integration tests
+
+on:
+  pull_request_target:
+    types: [opened, reopened, synchronize]
+
+permissions:
+  contents: read
+  pull-requests: write
+
+env:
+  NON_TEST_SECRETS: "SLACK_WEBHOOK_URL_NOTIFICATIONS"
+
+jobs:
+  notify:
+    if: github.event.pull_request.head.repo.fork == true
+    runs-on: ubuntu-slim
+    steps:
+      - uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
+        with:
+          ref: ${{ github.event.pull_request.base.sha }}
+
+      - uses: actions/setup-python@a309ff8b426b58ec0e2a45f0f869d46889d02405 # v6.2.0
+        with:
+          python-version: "3.13"
+
+      - name: Detect integrations requiring API keys for integration tests
+        id: affected
+        shell: python
+        env:
+          GH_TOKEN: ${{ github.token }}
+          PR_NUMBER: ${{ github.event.pull_request.number }}
+        run: |
+          import os
+          import re
+          import subprocess
+          from pathlib import Path
+
+          WORKFLOWS_DIR = Path(".github/workflows")
+          NON_TEST_SECRETS = set(os.environ["NON_TEST_SECRETS"].split())
+          SECRET_REF = re.compile(r"secrets\.([A-Z0-9_]+)")
+
+
+          def needs_api_key(integration: str) -> bool:
+              wf = WORKFLOWS_DIR / f"{integration}.yml"
+              if not wf.exists():
+                  return False
+              referenced = set(SECRET_REF.findall(wf.read_text()))
+              return bool(referenced - NON_TEST_SECRETS)
+
+
+          # 1. PR file list
+          paths = subprocess.check_output(
+              [
+                  "gh", "pr", "view", os.environ["PR_NUMBER"],
+                  "--json", "files", "-q", ".files[].path",
+              ],
+              text=True,
+          ).splitlines()
+
+          # 2. Integrations touched by this PR
+          touched = set()
+          for p in paths:
+              parts = Path(p).parts
+              if len(parts) >= 2 and parts[0] == "integrations":
+                  touched.add(parts[1])
+              elif (
+                  len(parts) == 3
+                  and parts[0] == ".github"
+                  and parts[1] == "workflows"
+                  and parts[2].endswith(".yml")
+                  and not parts[2].startswith("CI_")
+              ):
+                  touched.add(parts[2].removesuffix(".yml"))
+
+          # 3. Of those, which need API keys
+          affected = sorted(t for t in touched if needs_api_key(t))
+          print(f"touched  = {sorted(touched)}")
+          print(f"affected = {affected}")
+
+          list_value = "\n".join(f"- {name}" for name in affected)
+          with open(os.environ["GITHUB_OUTPUT"], "a") as f:
+              f.write(f"list<<EOF\n{list_value}\nEOF\n")
+
+      - name: Post or update sticky comment
+        if: steps.affected.outputs.list != ''
+        uses: marocchino/sticky-pull-request-comment@0ea0beb66eb9baf113663a64ec522f60e49231c0 # v3.0.4
+        with:
+          header: fork-pr-api-keys
+          number: ${{ github.event.pull_request.number }}
+          message: |
+            **Heads-up for maintainers**
+
+            This PR is from a fork and touches integrations whose integration tests require API keys.
+            Those tests are **skipped** in CI because fork PRs don't have access to repo secrets for security reasons.
+
+            Affected integrations:
+            ${{ steps.affected.outputs.list }}
+
+            Please run the integration tests locally (`hatch run test:integration` inside each folder) before approving.
+
+      - name: Remove stale comment
+        if: steps.affected.outputs.list == ''
+        uses: marocchino/sticky-pull-request-comment@0ea0beb66eb9baf113663a64ec522f60e49231c0 # v3.0.4
+        with:
+          header: fork-pr-api-keys
+          number: ${{ github.event.pull_request.number }}
+          delete: true

.github/workflows/CI_coverage_comment.yml

@@ -9,15 +9,20 @@ on:
       - "Test / anthropic"
       - "Test / arcadedb"
       - "Test / astra"
+      - "Test / brave"
       - "Test / azure_ai_search"
       - "Test / azure_doc_intelligence"
+      - "Test / chonkie"
       - "Test / chroma"
       - "Test / cohere"
       - "Test / cometapi"
       - "Test / deepeval"
+      - "Test / docling_serve"
       - "Test / dspy"
+      - "Test / e2b"
       - "Test / elasticsearch"
       - "Test / faiss"
+      - "Test / falkordb"
       - "Test / fastembed"
       - "Test / firecrawl"
       - "Test / github"

.github/workflows/CI_labeler.yml

@@ -10,6 +10,6 @@ jobs:
   triage:
     runs-on: ubuntu-slim
     steps:
-    - uses: actions/labeler@634933edcd8ababfe52f92936142cc22ac488b1b # v6.0.1
+    - uses: actions/labeler@f27b608878404679385c85cfa523b85ccb86e213 # v6.1.0
       with:
         repo-token: "${{ secrets.GITHUB_TOKEN }}"

.github/workflows/CI_license_compliance.yml

@@ -3,22 +3,22 @@ name: Core / License Compliance
 on:
   pull_request:
     paths:
-    - "integrations/**/pyproject.toml"
-    - ".github/workflows/CI_license_compliance.yml"
+      - "integrations/**/pyproject.toml"
+      - ".github/workflows/CI_license_compliance.yml"
   # Since we test PRs, there is no need to run the workflow at each
   # merge on `main`. Let's use a cron job instead.
   schedule:
     - cron: "0 0 * * *" # every day at midnight
 
 env:
   PYTHON_VERSION: "3.10"
-  EXCLUDE_PACKAGES: "(?i)^(azure-identity|fastembed|ragas|tqdm|psycopg|mistralai|pgvector).*"
+  EXCLUDE_PACKAGES: "(?i)^(azure-identity|azure-search-documents|fastembed|tqdm|psycopg|mistralai|pgvector).*"
 
   # Exclusions must be explicitly motivated
   #
   # - azure-identity is MIT but the license is not available on PyPI
+  # - azure-search-documents is MIT but the license is not available on PyPI
   # - fastembed is Apache 2.0 but the license on PyPI is unclear ("Other/Proprietary License (Apache License)")
-  # - ragas is Apache 2.0 but the license is not available on PyPI
   # - mistralai is Apache 2.0 but the license is not available on PyPI
   # - pgvector is MIT but the license is not available on PyPI
 

.github/workflows/CI_project.yml

@@ -10,7 +10,7 @@ jobs:
     name: Add new issues to project for triage
     runs-on: ubuntu-slim
     steps:
-      - uses: actions/add-to-project@244f685bbc3b7adfa8466e08b698b5577571133e # v1.0.2
+      - uses: actions/add-to-project@5afcf98fcd03f1c2f92c3c83f58ae24323cc57fd # v2.0.0
         with:
           project-url: https://github.com/orgs/deepset-ai/projects/5
           github-token: ${{ secrets.GH_PROJECT_PAT }}

.github/workflows/CI_pypi_release.yml

@@ -62,7 +62,7 @@ jobs:
           packages-dir: ${{ steps.pathfinder.outputs.project_path }}/dist
 
       - name: Generate changelog
-        uses: orhun/git-cliff-action@c93ef52f3d0ddcdcc9bd5447d98d458a11cd4f72 # v4.7.1
+        uses: orhun/git-cliff-action@f50e11560dce63f7c33227798f90b924471a88b5 # v4.8.0
         env:
           OUTPUT: "${{ steps.pathfinder.outputs.project_path }}/CHANGELOG.md"
         with: