Avatar for the PrefectHQ user
PrefectHQ
prefect
BlogDocsChangelog

Performance History

Latest Results

Fix _UnpicklingFuture.add_done_callback swallowing deserialization errors (#21610) When cloudpickle.loads() fails inside _UnpicklingFuture.add_done_callback, the exception propagates into concurrent.futures.Future._invoke_callbacks, which silently catches and logs it. The callback `fn` (which resolves the _ChainedFuture via PrefectWrappedFuture.call_with_self) never executes, so the future chain is never resolved and the flow run hangs indefinitely as a zombie — consuming cluster resources until manually killed. This can happen when task code changes between the time a task is submitted and when its result is deserialized (e.g., module-level renames, removed classes, or image version mismatches in Kubernetes deployments). Closes #21610 Changes: - Add super().__init__() to _UnpicklingFuture so it can track its own state - Wrap cloudpickle.loads() in try/except within add_done_callback, storing any deserialization error in _deserialization_error - Always call fn(self) — not fn(result) — so the callback chain completes regardless of deserialization success (also fixes a latent bug: fn expects a future per the add_done_callback contract, not a deserialized value) - Override result() and exception() to surface _deserialization_error when set Testing: - Added TestUnpicklingFuture with two unit tests: - test_add_done_callback_propagates_deserialization_error: feeds invalid bytes to the inner future, asserts callback fires and exception() returns the deserialization error. Verified this test FAILS on the unfixed code (callback never invoked, 5s timeout hit) and PASSES after the fix. - test_add_done_callback_passes_result_on_success: feeds valid cloudpickle bytes, asserts callback fires with self and result() returns correctly. - Tests are pure unit tests against _UnpicklingFuture directly, no server or database fixtures required. Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
saschwartz:fix/21610-unpickling-future-error-propagation
7 minutes ago
Address Codex review: only skip uv pip freeze when the execution side of the launcher is overridden Launchers can be one-sided (e.g. only 'upload'). If only the upload side is overridden, execution still uses 'uv run' and 'execute_bundle_in_subprocess' still relies on bundle['dependencies'] to install the flow's packages. Use get_launcher_for_side(flow.launcher, 'execution') so the freeze is only skipped when the execution launcher is actually set. Co-authored-by: Linear User <linearbot@prefect.io>
devin/oss-7887-1776669201
26 minutes ago
Fix #21606: Skip uv pip freeze in create_bundle_for_flow_run when flow has a non-uv launcher When a flow is decorated with a `launcher` override (e.g. `launcher={'upload': ['python'], 'execution': ['python']}`), the user has opted out of uv-based launchers entirely, so running `uv pip freeze` to populate `bundle['dependencies']` is unnecessary and fails on hosts where `uv` is not installed or executable (e.g. `PermissionError: [Errno 13] Permission denied: 'uv'`). `bundle['dependencies']` is only consumed by `execute_bundle_in_subprocess`, which already tolerates an empty string via `if dependencies := bundle.get('dependencies')`. Guard the freeze with `getattr(flow, 'launcher', None) is None` and set `dependencies` to an empty string when a launcher is configured. Co-authored-by: Linear User <linearbot@prefect.io>
devin/oss-7887-1776669201
6 hours ago
fix(prefect-shell): kill whole process tree on ShellOperation cleanup (#21586) Co-authored-by: Claude Opus 4 (1M context) <noreply@anthropic.com>
main
10 hours ago
docs: document JSDOM CSS custom property and matchMedia mocking patterns (#21605) Co-authored-by: github-actions[bot] <github-actions[bot]@users.noreply.github.com>
main
3 days ago
fix(ui-v2): default deployment detail tab to Details to match V1 (#21601) Co-authored-by: Devin AI <158243242+devin-ai-integration[bot]@users.noreply.github.com> Co-authored-by: alex.s <alex.s@prefect.io> Co-authored-by: alex.s <ajstreed1@gmail.com> Co-authored-by: Alex Streed <desertaxle@users.noreply.github.com>
main
3 days ago
Fall back across validated IPs in SSRF-protected backends Previously the protected backends pinned a single resolved IP, which broke dual-stack hostnames in single-stack environments: if the first resolved address was unreachable (e.g. AAAA in an IPv4-only network) the connection would fail even when a later A/AAAA record was reachable. Now iterate every validated IP, retry on ConnectError / ConnectTimeout / OSError, and re-raise the last error only if all addresses fail. Addresses the Codex P1 review comment on #21591. Co-authored-by: Alexander Streed <alex.s@prefect.io> Co-Authored-By: alex.s <ajstreed1@gmail.com>
devin1/oss-7874-fix-dns-rebinding-toctou-bypass-in-validate_restricted_url
3 days ago
ui-v2: add empty state for concurrency limit active task runs (#21599) Co-authored-by: Devin AI <158243242+devin-ai-integration[bot]@users.noreply.github.com> Co-authored-by: Alexander Streed <alex.s@prefect.io> Co-authored-by: alex.s <ajstreed1@gmail.com>
main
3 days ago

Latest Branches

CodSpeed Performance Gauge
0%
Fix _UnpicklingFuture.add_done_callback swallowing deserialization errors#21612
29 minutes ago
6c73b9d
saschwartz:fix/21610-unpickling-future-error-propagation
CodSpeed Performance Gauge
0%
Skip `uv pip freeze` in bundle creation when a non-uv launcher is set#21607
30 minutes ago
648c788
devin/oss-7887-1776669201
CodSpeed Performance Gauge
-3%
Fix DNS rebinding TOCTOU bypass in `validate_restricted_url`#21591
3 days ago
a080abd
devin1/oss-7874-fix-dns-rebinding-toctou-bypass-in-validate_restricted_url
© 2026 CodSpeed Technology
Home Terms Privacy Docs