From fbbeb158e2305f737ec463aaa659396dd3a307fe Mon Sep 17 00:00:00 2001 From: Jan Calanog Date: Tue, 12 Mar 2024 11:58:29 +0100 Subject: [PATCH 1/2] security: add permissions block to workflows (#174) --- .github/workflows/opentelemetry.yml | 3 +++ 1 file changed, 3 insertions(+) diff --git a/.github/workflows/opentelemetry.yml b/.github/workflows/opentelemetry.yml index b2ec57de2..31c1b24d4 100644 --- a/.github/workflows/opentelemetry.yml +++ b/.github/workflows/opentelemetry.yml @@ -7,6 +7,9 @@ - ci types: [completed] +permissions: + contents: read + jobs: otel-export-trace: runs-on: ubuntu-latest From 51b8f1f7a0f470cda77a0f2b3eafa1e3d585b957 Mon Sep 17 00:00:00 2001 From: Victor Martinez Date: Tue, 12 Mar 2024 12:22:27 +0100 Subject: [PATCH 2/2] github-action: fix ident (#176) --- .github/workflows/opentelemetry.yml | 30 ++++++++++++++--------------- 1 file changed, 15 insertions(+), 15 deletions(-) diff --git a/.github/workflows/opentelemetry.yml b/.github/workflows/opentelemetry.yml index 31c1b24d4..1eb6d8ad4 100644 --- a/.github/workflows/opentelemetry.yml +++ b/.github/workflows/opentelemetry.yml @@ -1,21 +1,21 @@ --- - name: OpenTelemetry Export Trace +name: OpenTelemetry Export Trace - on: - workflow_run: - workflows: - - ci - types: [completed] +on: + workflow_run: + workflows: + - "*" + types: [completed] permissions: contents: read - jobs: - otel-export-trace: - runs-on: ubuntu-latest - steps: - - uses: elastic/apm-pipeline-library/.github/actions/opentelemetry@current - with: - vaultUrl: ${{ secrets.VAULT_ADDR }} - vaultRoleId: ${{ secrets.VAULT_ROLE_ID }} - vaultSecretId: ${{ secrets.VAULT_SECRET_ID }} +jobs: + otel-export-trace: + runs-on: ubuntu-latest + steps: + - uses: elastic/apm-pipeline-library/.github/actions/opentelemetry@current + with: + vaultUrl: ${{ secrets.VAULT_ADDR }} + vaultRoleId: ${{ secrets.VAULT_ROLE_ID }} + vaultSecretId: ${{ secrets.VAULT_SECRET_ID }}