GitHub Actions in MLOps: Automatically Check and Deploy Your ML Model
Contents
8.2. GitHub Actions in MLOps: Automatically Check and Deploy Your ML Model#
8.2.1. Motivation#
Imagine your company is creating an ML powered service. As a data scientist, you might try to continuously improve the existing ML model.
Once you find a better model, how do you make sure the service doesn’t break when you deploy the new model?
Wouldn’t it be nice if you can create a workflow that:
Automatically tests a pull request from a team member
Merges a pull request when all tests passed
Deploys the ML model to the existing service?
In this section, you will learn how to create such a workflow with GitHub Actions.
8.2.2. What is GitHub Actions?#
GitHub Actions allows you to automate your workflows, making it faster to build, test, and deploy your code.
In general, a workflow will look similar to the below:
name: Workflow Name # Name of the workflow
on: push # Define which events can cause the workflow to run
jobs: # Define a list of jobs
first_job: # ID of the job
name: First Job # Name of the job
runs-on: ubuntu-latest # Name of machine to run the job on
steps:
...
second_job:
name: Second Job
runs-on: ubuntu-latest
steps:
...
There are 3 important concepts to understand from the code above:
When an event occurs (such as a push or a pull request), a workflow consisting of one or more jobs will be triggered
Jobs are independent of each other. Each job is a set of steps that runs inside its own virtual machine runner or inside a container.
Steps are dependent on each other and are executed in order.
Let’s dig deeper into these concepts in the next few sections.
8.2.3. Find the Best Parameters#
The first steps in an ML project include experimenting with different parameters and models in a non-master branch. In the section about version control, I mentioned how to use MLFlow+ DagsHub to log your experiments.
Link to the experiments shown above.
Once we found a combination of parameters and models that has a better performance than the existing model in production, we create a pull request to merge the new code with the master branch.
8.2.4. Use GitHub Actions to Test Code, ML Model, and Application#
To make sure that merging new code won’t cause any errors, we will create a workflow that:
automatically tests the pull requests
only allows the pull requests that pass all tests to merge with the master branch.
We will write this workflow inside a YAML file under .github/workflows .
.github
└── workflows
└── test_code.yaml
8.2.4.1. Specify Events#
In this workflow, we use on to specify that the workflow will only run :
If an event is a pull request.
If the paths of the committed files match certain patterns.
name: Test code and app
on:
pull_request:
paths: # Run when one or more paths match a pattern listed below
- config/**
- training/**
- application/**
- .github/workflows/test_code.yaml
8.2.4.2. Specify Steps#
Next, create a job called test_code , which consists of several steps executed in order.
jobs:
test_model:
name: Test new model
runs-on: ubuntu-latest
steps:
...
The first few steps will set up the environment before running the code.
steps:
- name: Checkout # Check out a repo
uses: actions/checkout@v2
- name: Environment setup # Set up with a specific version of Python
uses: actions/setup-python@v2
with:
python-version: 3.8
cache: pip
- name: Cache # Cache dependencies
uses: actions/cache@v2
with:
path: ~/.cache/pip
key: ${{ runner.os }}-pip-${{ hashFiles('**/dev-requirements.txt') }}
restore-keys: ${{ runner.os }}-pip-
- name: Install packages # Install dependencies
run: pip install -r dev-requirements.txt
- name: Pull data # Get data from remote storage
run: |
dvc remote modify origin --local auth basic
dvc remote modify origin --local user khuyentran1401
dvc remote modify origin --local password MyScretPassword
dvc pull -r origin train_model
Explanations of the syntax in the code above:
name: A name for your stepusesselects an action, which is an application that performs a complex but frequently repeated task. You can choose an action from thousands of actions on GitHub Marketplace.withinserts input parameters required by an actionrunruns command-line programs using shell
Explanations of the steps:
Checkoutchecks out your repository so that the workflow can access files in your repositoryEnvironment setupsets up a Python environment for your workflow (I chose Python 3.8)Cachecaches dependencies so that you don’t need to install dependencies every time you run the workflowInstall packagesinstalls all dependencies your code needs to run successfullyPull dataauthenticates and pulls data from remote storage. Here, my remote storage is DagsHub
Note that it is risky to put your username and password in a script that everybody can see. Thus, we will use encrypted secrets to hide this confidential information.
8.2.4.3. Encrypted Secrets#
Secrets are encrypted environment variables that you create in a repository. To create a secret, go to your repository, and click Settings → Secrets → Actions → New repository secret.
Insert the name of your secret and the value associated with this name.
Now you can access the secret DAGSHUB_USERNAME using ${{ secrets.DAGSHUB_USERNAME }} .
steps:
...
- name: Pull data
run: |
dvc remote modify origin --local auth basic
dvc remote modify origin --local user ${{ secrets.DAGSHUB_USERNAME }}
dvc remote modify origin --local password ${{ secrets.DAGSHUB_TOKEN }}
dvc pull -r origin train_model
8.2.4.4. Run Tests#
There are two parts to our code: training the model and deploying the model. We will write steps that make sure both parts can run without any errors and will work as expected.
Here is the step to test the training code:
steps:
...
- name: Run training tests
run: pytest training/tests
Specifically, we test the processing code and ML model.
Find all the tests here.
The steps to test the deployment code include:
Save model to BentoML local store
steps:
...
- name: Save model to BentoML local store
run: python application/src/save_model_to_bentoml.py
Run the application locally and run tests to make sure the application works as we expected.
steps:
...
- name: Serve the app locally and run app tests
run: |
bentoml serve ./application/src/create_service.py:service &
sleep 10
pytest application/tests
kill -9 `lsof -i:3000 -t`
Note: Here, we created an ML-powered app using BentoML. Read the previous section to understand more about BentoML:
Add and commit this workflow to the master branch on GitHub.
git add .github
git commit -m 'add workflow'
git push origin master
8.2.4.5. Add Rules#
To make sure the code is available to be merged only when the workflow runs successfully, select Settings → Branches → Add rule.
Add master as the branch name pattern, check Require status checks to pass before merging , then add the name of the workflow under Status checks that are required. Finally, click Save changes.
Now when you create a pull request, GitHub Actions will automatically run the workflow Test new model. You won’t be able to merge the pull request if the check does not pass.
Clicking Details will show you the status of the run.
Full code for testing the training code:
name: Test new model
on:
pull_request:
paths:
- config/**
- training/**
- application/**
- .github/workflows/test_training.yaml
jobs:
test_model:
name: Test new model
runs-on: ubuntu-latest
steps:
- name: Checkout
id: checkout
uses: actions/checkout@v2
- name: Environment setup
uses: actions/setup-python@v2
with:
python-version: 3.8
cache: pip
- name: Cache
uses: actions/cache@v2
with:
path: ~/.cache/pip
key: ${{ runner.os }}-pip-${{ hashFiles('**/dev-requirements.txt') }}
restore-keys: ${{ runner.os }}-pip-
- name: Install packages
run: pip install -r dev-requirements.txt
- name: Pull data
run: |
dvc remote modify origin --local auth basic
dvc remote modify origin --local user ${{ secrets.DAGSHUB_USERNAME }}
dvc remote modify origin --local password ${{ secrets.DAGSHUB_TOKEN }}
dvc pull -r origin train_model
- name: Run training tests
run: pytest training/tests
- name: Save model to BentoML local store
run: python application/src/save_model_to_bentoml.py
- name: Serve the app locally and run app tests
run: |
bentoml serve ./application/src/create_service.py:service &
sleep 10
pytest application/tests
kill -9 `lsof -i:3000 -t`
8.2.5. Use GitHub Actions to Deploy Model After Merging#
After merging the pull request, the model should automatically be deployed to the existing service. Let’s create a GitHub workflow to do exactly that.
Start with creating another workflow called deploy_app.yaml :
.github
└── workflows
├── deploy_app.yaml
└── test_model.yaml
The first few steps of the workflow are similar to the previous workflow:
name: Deploy App
on:
push:
branches:
- master
paths:
- config/**
- training/**
- application/**
- .github/workflows/deploy_app.yaml
jobs:
deploy_app:
name: Deploy App
runs-on: ubuntu-latest
steps:
- name: Checkout
id: checkout
uses: actions/checkout@v2
- name: Environment setup
uses: actions/setup-python@v2
with:
python-version: 3.8
cache: pip
- name: Cache
uses: actions/cache@v2
with:
path: ~/.cache/pip
key: ${{ runner.os }}-pip-${{ hashFiles('**/dev-requirements.txt') }}
restore-keys: ${{ runner.os }}-pip-
- name: Install packages
run: pip install -r dev-requirements.txt
- name: Pull data
run: |
dvc remote modify origin --local auth basic
dvc remote modify origin --local user ${{ secrets.DAGSHUB_USERNAME }}
dvc remote modify origin --local password ${{ secrets.DAGSHUB_TOKEN }}
dvc pull -r origin process_data train_model
- name: Run and save model
run: python training/src/evaluate_model.py
env:
MLFLOW_TRACKING_USERNAME: ${{ secrets.MLFLOW_TRACKING_USERNAME }}
MLFLOW_TRACKING_PASSWORD: ${{ secrets.MLFLOW_TRACKING_PASSWORD }}
We also use env to add environment variables to the workflow. The environment variables will be used in some steps in the workflow.
jobs:
deploy_app:
env: # Set environment variables
HEROKU_API_KEY: ${{ secrets.HEROKU_API_KEY }}
HEROKU_EMAIL: ${{ secrets.HEROKU_EMAIL }}
Next, we use BentoML to containerize the model and then deploy it to Heroku.
steps:
...
- name: Build Bentos
run: bentoml build
- name: Heroku login credentials
run: |
cat > ~/.netrc <<EOF
machine api.heroku.com
login $HEROKU_EMAIL
password $HEROKU_API_KEY
machine git.heroku.com
login $HEROKU_EMAIL
password $HEROKU_API_KEY
EOF
- name: Login to Heroku container
run: heroku container:login
- name: Containerize Bentos, push it to the Heroku app, and release the app
run: |
cd $(find ~/bentoml/bentos/predict_employee/ -type d -maxdepth 1 -mindepth 1)/env/docker
APP_NAME=employee-predict-1
heroku container:push web --app $APP_NAME --context-path=../..
heroku container:release web --app $APP_NAME
Add and commit this workflow to the master branch on GitHub.
git add .github
git commit -m 'add workflow'
git push origin master
Now when you merge a pull request, a workflow called Deploy App will run. To view the status of the workflow, click Actions → Name of the latest workflow → Deploy App.
Now you should see your workflow running:
Cool! The website for this app, which is https://employee-predict-1.herokuapp.com/, is now updated.
Since my Streamlit app makes the POST request to the URL above to generate predictions, the app is also updated.
prediction = requests.post(
"https://employee-predict-1.herokuapp.com/predict",
headers={"content-type": "application/json"},
data=data_json,
).text[0]
8.2.6. Conclusion#
You have just learned how to use GitHub actions to create workflows that automatically test a pull request from a team member and deploy the ML model to the existing service. I hope this section will give you the motivation to automate your tasks with GitHub Actions.
8.2.7. Reference#
Deploy to Heroku with github actions. remarkablemark. (2021, March 12). Retrieved May 31, 2022, from https://remarkablemark.org/blog/2021/03/12/github-actions-deploy-to-heroku/
Galvis, J. (2020, August 12). Using github actions for integration testing on a REST API. Medium. Retrieved May 31, 2022, from https://medium.com/weekly-webtips/using-github-actions-for-integration-testing-on-a-rest-api-358991d54a20
Ktrnka. (n.d.). Ktrnka/MLOPS_EXAMPLE_DVC: Mlops example using DVC, S3, and Heroku. GitHub. Retrieved May 31, 2022, from https://github.com/ktrnka/mlops_example_dvc
Employee Future Prediction. CC0: Public Domain. Retrieved 2022–05–10 from https://www.kaggle.com/datasets/tejashvi14/employee-future-predictio