[Bug] SecretsManager get function supports env_var pararmeters.

[0yukali0]

Tracking issue

flyteorg/flyte#

Why are the changes needed?

In flytekit secretsManager, it will check whether the secret exist in an env var "" or in a file "/etc/secrets//".
In flytekit secret, create a env "MY_SECRET" when setting "env_var=MY_SECRET" parameters.
SecretManager won't find it with naming rule with "".

What changes were proposed in this pull request?

Adding env_var pararmeters in secreateManager get function.
Initially, secretManager search the secret with following orders.

1. "_" env
2. "/etc/secrets//" file
   In this PR, its order will be
3. "_" env
   2 . env_var
4. "/etc/secrets//" file

How was this patch tested?

make test
os.environ["LOCAL_ENV_VAR"] = "value" assert sec.get(group="group", key="key2", env_var="LOCAL_ENV_VAR") == "value" assert sec.get(key="key", env_var="LOCAL_ENV_VAR") == "value" assert sec.get(env_var="LOCAL_ENV_VAR") == "value"

Setup process

Screenshots

Check all the applicable boxes

• I updated the documentation accordingly.
• All new and existing tests passed.
• All commits are signed-off.

Related PRs

Docs link

Summary by Bito

This PR fixes a bug in SecretsManager by adjusting secret lookup order and adding an optional 'env_var' parameter. It includes renaming and reordering variables in the context_manager module with updated type annotations. The changes enhance reliability and clarity of secret management in flytekit.

Unit tests added: True

Estimated effort to review (1-5, lower is better): 1

[welcome]

Thank you for opening this pull request! 🙌

These tips will help get your PR across the finish line:

• Most of the repos have a PR template; if not, fill it out to the best of your knowledge.
• Sign off your commits (Reference: DCO Guide).

[flyte-bot]

Code Review Agent Run Status

• Limitations and other issues: ❌ Failure - The AI Code Review Agent skipped reviewing this change because it is configured to exclude certain pull requests based on the source/target branch or the pull request status. You can change the settings here, or contact the agent instance creator at eduardo@union.ai.

[flyte-bot]

Code Review Agent Run Status

• Limitations and other issues: ❌ Failure - The AI Code Review Agent skipped reviewing this change because it is configured to exclude certain pull requests based on the source/target branch or the pull request status. You can change the settings here, or contact the agent instance creator at eduardo@union.ai.

[flyte-bot]

Code Review Agent Run #2389d5

Actionable Suggestions - 1

• flytekit/core/context_manager.py - 1

  • Possible undefined variable reference · Line 433-433

Review Details

• Files reviewed - 2 · Commit Range: 9503d33..9503d33

  • flytekit/core/context_manager.py
  • tests/flytekit/unit/core/test_context_manager.py
• Files skipped - 0
• Tools

  • Whispers (Secret Scanner) - ✔︎ Successful
  • Detect-secrets (Secret Scanner) - ✔︎ Successful
  • MyPy (Static Code Analysis) - ✔︎ Successful
  • Astral Ruff (Static Code Analysis) - ✔︎ Successful

---

Bito Usage Guide

Commands

Type the following command in the pull request comment and save the comment.

• /review - Manually triggers a full AI review.

Refer to the documentation for additional commands.

Configuration

This repository uses code_review_bito You can customize the agent settings here or contact your Bito workspace admin at haytham@union.ai.

Documentation & Help

• Review rules
• General documentation
• FAQ

AI Code Review powered by

[flyte-bot]

Changelist by Bito

This pull request implements the following key changes.

Key Change	Files Impacted
Bug Fix - SecretsManager Bug Fixes	- context_manager.py - Refactored SecretsManager by replacing env_var with default_env_var for proper secret lookup and updated type hints.
Testing - SecretsManager Unit Tests Update	- test_context_manager.py - Added unit tests to verify the new env_var parameter and secret retrieval order.

[flyte-bot]

Possible undefined variable reference

The variable group_env_var might be undefined when reaching line 433. If none of the environment prefixes in the loop produces a valid group_env_var (e.g., when the loop is not entered or when env_prefixes is empty), then group_env_var will be undefined when constructing the env_vars string. Consider initializing group_env_var to None at the beginning of the function.

Code suggestion

Check the AI-generated fix before applying

 @@ -401,0 +402 @@
 +        group_env_var: Optional[str] = None,

Code Review Run #2389d5

---

Should Bito avoid suggestions like this for future reviews? (Manage Rules)

• Yes, avoid them

[flyte-bot]

Code Review Agent Run Status

• Limitations and other issues: ❌ Failure - The AI Code Review Agent skipped reviewing this change because it is configured to exclude certain pull requests based on the source/target branch or the pull request status. You can change the settings here, or contact the agent instance creator at eduardo@union.ai.

[flyte-bot]

Code Review Agent Run #98d23d

Actionable Suggestions - 0

Review Details

• Files reviewed - 1 · Commit Range: 9503d33..e74db52

  • flytekit/core/context_manager.py
• Files skipped - 0
• Tools

  • Whispers (Secret Scanner) - ✔︎ Successful
  • Detect-secrets (Secret Scanner) - ✔︎ Successful
  • MyPy (Static Code Analysis) - ✔︎ Successful
  • Astral Ruff (Static Code Analysis) - ✔︎ Successful

---

Bito Usage Guide

Commands

Type the following command in the pull request comment and save the comment.

• /review - Manually triggers a full AI review.

Refer to the documentation for additional commands.

Configuration

This repository uses code_review_bito You can customize the agent settings here or contact your Bito workspace admin at haytham@union.ai.

Documentation & Help

• Review rules
• General documentation
• FAQ

AI Code Review powered by

[0yukali0]

/review

[flyte-bot]

Code Review Agent Run #f74fd8

Actionable Suggestions - 1

• flytekit/core/context_manager.py - 1

  • Potential undefined variable in error message · Line 435-435

Review Details

• Files reviewed - 2 · Commit Range: 9503d33..e74db52

  • flytekit/core/context_manager.py
  • tests/flytekit/unit/core/test_context_manager.py
• Files skipped - 0
• Tools

  • Whispers (Secret Scanner) - ✔︎ Successful
  • Detect-secrets (Secret Scanner) - ✔︎ Successful
  • MyPy (Static Code Analysis) - ✔︎ Successful
  • Astral Ruff (Static Code Analysis) - ✔︎ Successful

---

Bito Usage Guide

Commands

Type the following command in the pull request comment and save the comment.

• /review - Manually triggers a full AI review.

Refer to the documentation for additional commands.

Configuration

This repository uses code_review_bito You can customize the agent settings here or contact your Bito workspace admin at haytham@union.ai.

Documentation & Help

• Review rules
• General documentation
• FAQ

AI Code Review powered by

[flyte-bot]

Potential undefined variable in error message

The error message now includes both env_var and group_env_var, but group_env_var might be undefined if the code path doesn't go through the loop at lines 415-422. This could potentially lead to a reference error.

Code suggestion

Check the AI-generated fix before applying

Suggested change

	f"in Env Var:{env_var}, {group_env_var} and FilePath: {fpath}"
	f"in Env Var:{env_var}{', ' + group_env_var if group_env_var is not None else ''} and FilePath: {fpath}"

Code Review Run #f74fd8

---

Should Bito avoid suggestions like this for future reviews? (Manage Rules)

• Yes, avoid them

[0yukali0]

/review

[flyte-bot]

Code Review Agent Run #ba9449

Actionable Suggestions - 0

Review Details

• Files reviewed - 2 · Commit Range: 33820f9..33820f9

  • flytekit/core/context_manager.py
  • tests/flytekit/unit/core/test_context_manager.py
• Files skipped - 0
• Tools

  • Whispers (Secret Scanner) - ✔︎ Successful
  • Detect-secrets (Secret Scanner) - ✔︎ Successful

---

Bito Usage Guide

Commands

Type the following command in the pull request comment and save the comment.

• /review - Manually triggers a full AI review.

Refer to the documentation for additional commands.

Configuration

This repository uses code_review_bito You can customize the agent settings here or contact your Bito workspace admin at haytham@union.ai.

Documentation & Help

• Review rules
• General documentation
• FAQ

AI Code Review powered by

[flyte-bot]

Code Review Agent Run #21673e

Actionable Suggestions - 0

Review Details

• Files reviewed - 2 · Commit Range: 33820f9..33820f9

  • flytekit/core/context_manager.py
  • tests/flytekit/unit/core/test_context_manager.py
• Files skipped - 0
• Tools

  • Whispers (Secret Scanner) - ✔︎ Successful
  • Detect-secrets (Secret Scanner) - ✔︎ Successful

---

Bito Usage Guide

Commands

Type the following command in the pull request comment and save the comment.

• /review - Manually triggers a full AI review.

Refer to the documentation for additional commands.

Configuration

This repository uses code_review_bito You can customize the agent settings here or contact your Bito workspace admin at haytham@union.ai.

Documentation & Help

• Review rules
• General documentation
• FAQ

AI Code Review powered by