chore: Move vllm specific build artifacts and add precommit hooks (#5485)

* move vllm specific build artifacts and add precommit hooks

Signed-off-by: sirutBuasai <sirutbuasai27@outlook.com>

* docker fmt

Signed-off-by: sirutBuasai <sirutbuasai27@outlook.com>

* run all precommits

Signed-off-by: sirutBuasai <sirutbuasai27@outlook.com>

* fix indentations

Signed-off-by: sirutBuasai <sirutbuasai27@outlook.com>

---------

Signed-off-by: sirutBuasai <sirutbuasai27@outlook.com>

Author: sirutBuasai

.github/workflows/pr-vllm.yml

@@ -1,5 +1,5 @@
 {
-  "MD013": false, // disable line-length limit
-  "MD033": false, // allow inline HTML
-  "MD041": false  // allow first line not being top level
+  "MD013": false,
+  "MD033": false,
+  "MD041": false
 }

.markdownlint.json

@@ -7,64 +7,154 @@ default_stages:
   - manual
 
 repos:
-  - repo: https://github.com/reteps/dockerfmt
-    rev: v0.3.9
+  # ---------------------------------------------------------------------------- #
+  #                              🔄 Pre-Commit Hooks                             #
+  # ---------------------------------------------------------------------------- #
+
+  ### Pre-commit First-Party Tools
+  - repo: https://github.com/pre-commit/pre-commit-hooks
+    rev: v6.0.0
     hooks:
-      - id: dockerfmt
-        args:
-          # optional: add additional arguments here
-          - --indent=2
-          - --write
-        stages: [pre-commit]
-  - repo: https://github.com/scop/pre-commit-shfmt
-    rev: v3.12.0-2 # Use the latest stable revision
+  # ------------------------------- 🌳 Git Tools ------------------------------- #
+    - id: check-merge-conflict
+      name: "🌳 git · Detect conflict markers"
+    - id: forbid-new-submodules
+      name: "🌳 git · Prevent submodule creation"
+    - id: no-commit-to-branch
+      name: "🌳 git · Protect main branches"
+      args: ["--branch", "main", "--branch", "master"]
+    - id: check-added-large-files
+      name: "🌳 git · Block large file commits"
+      args: ["--maxkb=5000"]
+  # ---------------------------- 📁 Filesystem Tools --------------------------- #
+    - id: check-executables-have-shebangs
+      name: "📁 filesystem/⚙️ exec · Verify shebang presence"
+    - id: check-shebang-scripts-are-executable
+      name: "📁 filesystem/⚙️ exec · Verify script permissions"
+    - id: check-symlinks
+      name: "📁 filesystem/🔗 symlink · Check symlink validity"
+    - id: destroyed-symlinks
+      name: "📁 filesystem/🔗 symlink · Detect broken symlinks"
+    - id: requirements-txt-fixer
+      name: "📁 filesystem/📝 file · Validate requirements.txt"
+    - id: trailing-whitespace
+      name: "📁 filesystem/📝 file · Validate empty whitespaces"
+  # ----------------------------- 🔒 Security Tools ---------------------------- #
+    - id: check-json
+      name: "📁 filesystem/🔧 config · Validate JSON file"
+    - id: check-yaml
+      name: "📁 filesystem/🔧 config · Validate YAML file"
+    - id: detect-aws-credentials
+      name: "🔒 security · Detect aws credentials"
+      args:
+        - --allow-missing-credentials
+    - id: detect-private-key
+      name: "🔒 security · Detect private kayes"
+
+
+  - repo: https://github.com/gitleaks/gitleaks
+    rev: v8.29.0
+    hooks:
+    - id: gitleaks
+      name: "🔒 security · Detect hardcoded secrets"
+
+  # --------------------------- 🔍 Code Quality Tools -------------------------- #
+
+  ### Writing Tools ###
+  - repo: https://github.com/crate-ci/typos
+    rev: v1.38.1
+    hooks:
+    - id: typos
+      name: "✏️ typos · Checking typos"
+      args: [--force-exclude]
+
+
+  ### Python Tools ###
+  - repo: https://github.com/astral-sh/ruff-pre-commit
+    rev: v0.14.3
     hooks:
-      - id: shfmt
-        # Optional: Add arguments to shfmt if needed, e.g., to enable "simplify" mode
-        args: ["-s"]
-        stages: [pre-commit]
+    - id: ruff-format
+      name: "🐍 python · Format python"
+    - id: ruff-check
+      name: "🐍 python · Lint python"
+
+
+  ### Workflow Validation ###
+  - repo: https://github.com/python-jsonschema/check-jsonschema
+    rev: 0.35.0
+    hooks:
+    - id: check-github-workflows
+      name: "🐙 github-actions · Validate gh workflow files"
+      args: ["--verbose"]
+
+  - repo: https://github.com/rhysd/actionlint
+    rev: v1.7.8
+    hooks:
+    - id: actionlint
+      name: "🐙 github-actions · Lint gh workflow files"
+      args: ["-shellcheck=enable=all"]
+
+
+  ### Markdown ###
   - repo: https://github.com/hukkin/mdformat
-    rev: 1.0.0  # Use the ref you want to point at
+    rev: 1.0.0
     hooks:
     - id: mdformat
-      # Optionally add plugins
+      name: "📝 markdown · Format markdown"
       additional_dependencies:
       - mdformat-gfm
-      - mdformat-black
-      stages: [pre-commit]
+      - mdformat-ruff
+      - ruff
+
   - repo: https://github.com/igorshubovych/markdownlint-cli
     rev: v0.45.0
     hooks:
-      - id: markdownlint
-        args: [--fix]
-        stages: [pre-commit]
-  - repo: https://github.com/astral-sh/ruff-pre-commit
-    rev: v0.14.3
+    - id: markdownlint
+      name: "📝 markdown · Lint markdown"
+      args: [--fix]
+
+
+  ### Docker Tools ###
+  - repo: https://github.com/reteps/dockerfmt
+    rev: v0.3.9
     hooks:
-      - id: ruff-format
-        stages: [pre-commit]
-      - id: ruff-check
-  - repo: https://github.com/rhysd/actionlint
-    rev: v1.7.7
+    - id: dockerfmt
+      name: "🐳 docker · Format docker"
+      args:
+        - --indent=2
+        - --write
+
+
+  ### Shell ###
+  - repo: https://github.com/scop/pre-commit-shfmt
+    rev: v3.12.0-2 # Use the latest stable revision
     hooks:
-    - id: actionlint
-      args: ["-shellcheck=enable=all"]
-  - repo: https://github.com/crate-ci/typos
-    rev: v1.38.1
+    - id: shfmt
+      name: "🐚 shell · Format shell scripts"
+      args: ["-s"]
+
+
+  # --------------------------- ✍️ Git Commit Quality -------------------------- #
+
+  ### Commit Message Standards ###
+  - repo: https://github.com/commitizen-tools/commitizen
+    rev: v4.1.0
     hooks:
-    - id: typos
-      args: [--force-exclude]
+    - id: commitizen
+      name: "🌳 git · Validate commit message"
+      additional_dependencies: [cz-conventional-gitmoji]
+
   - repo: local
     hooks:
-      - id: signoff-commit
-        name: Sign-off Commit
-        entry: bash
-        args:
-          - -c
-          - |
-            if ! grep -q "^Signed-off-by: $(git config user.name) <$(git config user.email)>" "$(git rev-parse --git-path COMMIT_EDITMSG)"; then
-              printf "\nSigned-off-by: $(git config user.name) <$(git config user.email)>\n" >> "$(git rev-parse --git-path COMMIT_EDITMSG)"
-            fi
-        language: system
-        verbose: true
-        stages: [commit-msg]
+    - id: signoff-commit
+      name: Sign-off Commit
+      entry: bash
+      args:
+        - -c
+        - |
+          if ! grep -q "^Signed-off-by: $(git config user.name) <$(git config user.email)>" "$(git rev-parse --git-path COMMIT_EDITMSG)"; then
+            printf "\nSigned-off-by: $(git config user.name) <$(git config user.email)>\n" >> "$(git rev-parse --git-path COMMIT_EDITMSG)"
+          fi
+      language: system
+      verbose: true
+      stages: [commit-msg]

.pre-commit-config.yaml

@@ -19,7 +19,7 @@ WORKDIR /
 
 COPY ./scripts/telemetry/deep_learning_container.py /usr/local/bin/deep_learning_container.py
 COPY ./scripts/telemetry/bash_telemetry.sh /usr/local/bin/bash_telemetry.sh
-COPY ./scripts/setup_oss_compliance.sh setup_oss_compliance.sh
+COPY ./scripts/common/setup_oss_compliance.sh setup_oss_compliance.sh
 
 RUN chmod +x /usr/local/bin/deep_learning_container.py \
   && chmod +x /usr/local/bin/bash_telemetry.sh \
@@ -34,7 +34,7 @@ RUN chmod +x /usr/local/bin/deep_learning_container.py \
   && rm -rf /var/lib/apt/lists/* \
   && rm -rf /root/.cache | true
 
-COPY ./scripts/install_efa.sh install_efa.sh
+COPY ./scripts/common/install_efa.sh install_efa.sh
 RUN bash install_efa.sh ${EFA_VERSION} \
   && rm install_efa.sh \
   && mkdir -p /tmp/nvjpeg \
@@ -59,7 +59,7 @@ RUN dpkg -l | grep -E "cuda|nvidia|libnv" | awk '{print $2}' | xargs apt-mark ho
   && apt-get upgrade -y \
   && apt-get clean
 
-COPY ./scripts/dockerd_entrypoint.sh /usr/local/bin/dockerd_entrypoint.sh
+COPY ./scripts/vllm/dockerd_entrypoint.sh /usr/local/bin/dockerd_entrypoint.sh
 RUN chmod +x /usr/local/bin/dockerd_entrypoint.sh
 
 ENTRYPOINT ["/usr/local/bin/dockerd_entrypoint.sh"]

docker/vllm/Dockerfile

@@ -19,7 +19,7 @@ WORKDIR /
 
 COPY ./scripts/telemetry/deep_learning_container.py /usr/local/bin/deep_learning_container.py
 COPY ./scripts/telemetry/bash_telemetry.sh /usr/local/bin/bash_telemetry.sh
-COPY ./scripts/setup_oss_compliance.sh setup_oss_compliance.sh
+COPY ./scripts/common/setup_oss_compliance.sh setup_oss_compliance.sh
 
 RUN chmod +x /usr/local/bin/deep_learning_container.py \
   && chmod +x /usr/local/bin/bash_telemetry.sh \
@@ -34,7 +34,7 @@ RUN chmod +x /usr/local/bin/deep_learning_container.py \
   && rm -rf /var/lib/apt/lists/* \
   && rm -rf /root/.cache | true
 
-COPY ./scripts/install_efa.sh install_efa.sh
+COPY ./scripts/common/install_efa.sh install_efa.sh
 RUN bash install_efa.sh ${EFA_VERSION} \
   && rm install_efa.sh \
   && mkdir -p /tmp/nvjpeg \
@@ -62,7 +62,7 @@ RUN dpkg -l | grep -E "cuda|nvidia|libnv" | awk '{print $2}' | xargs apt-mark ho
   && apt-get upgrade -y \
   && apt-get clean
 
-COPY ./scripts/dockerd_entrypoint.sh /usr/local/bin/dockerd_entrypoint.sh
+COPY ./scripts/vllm/dockerd_entrypoint.sh /usr/local/bin/dockerd_entrypoint.sh
 RUN chmod +x /usr/local/bin/dockerd_entrypoint.sh
 
 ENTRYPOINT ["/usr/local/bin/dockerd_entrypoint.sh"]

docker/vllm/Dockerfile.rayserve

@@ -30,7 +30,7 @@ function check_libnccl_net_so {
 function install_efa {
     EFA_VERSION=$1
     OPEN_MPI_PATH="/opt/amazon/openmpi"
-    
+
     # Install build time tools
     apt-get update
     apt-get install -y --allow-change-held-packages --no-install-recommends \
@@ -73,14 +73,14 @@ function install_efa {
     ssh-keygen -q -t rsa -N '' -f /root/.ssh/id_rsa
     cp /root/.ssh/id_rsa.pub /root/.ssh/authorized_keys
     printf "Host *\n StrictHostKeyChecking no\n" >> /root/.ssh/config
-        
+
     # Remove build time tools
     # apt-get remove -y
     #     curl
     #     build-essential
     #     cmake
     #     git
-    
+
     # Cleanup
     apt-get clean
     apt-get autoremove -y
@@ -93,7 +93,7 @@ function install_efa {
 while test $# -gt 0
 do
     case "$1" in
-    [0-9].[0-9]*.[0-9]*) install_efa $1; 
+    [0-9].[0-9]*.[0-9]*) install_efa $1;
         ;;
     *) echo "bad argument $1"; exit 1
         ;;

scripts/install_efa.sh scripts/common/install_efa.shscripts/install_efa.sh renamed to scripts/common/install_efa.sh

@@ -1,5 +1,5 @@
-# telemetry.sh
 #!/bin/bash
+# telemetry.sh
 if [ -f /usr/local/bin/deep_learning_container.py ] && [[ -z "${OPT_OUT_TRACKING}" || "${OPT_OUT_TRACKING,,}" != "true" ]]; then
     (
         python /usr/local/bin/deep_learning_container.py \

scripts/setup_oss_compliance.sh scripts/common/setup_oss_compliance.shscripts/setup_oss_compliance.sh renamed to scripts/common/setup_oss_compliance.sh

@@ -1,3 +1,4 @@
+#!/usr/bin/env python3
 # Copyright 2018-2020 Amazon.com, Inc. or its affiliates. All Rights Reserved.
 #
 # Licensed under the Apache License, Version 2.0 (the "License"). You

scripts/telemetry/bash_telemetry.sh

@@ -3,4 +3,4 @@
 # Execute telemetry script if it exists, suppress errors
 bash /usr/local/bin/bash_telemetry.sh >/dev/null 2>&1 || true
 
-python3 -m vllm.entrypoints.openai.api_server "$@"
+python3 -m vllm.entrypoints.openai.api_server "$@"