Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Switch to new GitHub App Token #13158

Merged
merged 1 commit into from
Feb 2, 2025
Merged

Switch to new GitHub App Token #13158

merged 1 commit into from
Feb 2, 2025

Conversation

trask
Copy link
Member

@trask trask commented Feb 1, 2025

This is part of the Project Infrastructure SIG's work to lock down permissions more, related to

My plan is, after merging this, to test it with the backport automation first.

If that goes well, I'll extend it to the other automations in this repo.

If that goes well, I'll document it in https://github.com/open-telemetry/community/blob/main/assets.md and ask other repos to start transitioning away from @opentelemetrybot.

cc @austinlparker @adrielp

@trask trask requested a review from a team as a code owner February 1, 2025 21:52
@adrielp
Copy link

adrielp commented Feb 2, 2025
edited
Loading

Approved. I'm a big fan of GitHub Apps for on the fly tokens. Have you looked into octo-sts from Chainguard? I've started replacing GitHub apps with it and found it to be fairly amazing. Might be work a look to reduce the need for long lived private keys as env vars. Works very similar.

@trask trask merged commit a9217ee into open-telemetry:main Feb 2, 2025
59 checks passed
@trask trask deleted the switch-to-more-secure-token branch February 2, 2025 17:02
@trask trask mentioned this pull request Feb 2, 2025
Closed
trask added a commit that referenced this pull request Feb 2, 2025
@trask
Switch to new GitHub App Token (#13158)
4204380
@trask trask mentioned this pull request Feb 2, 2025
Closed
trask added a commit that referenced this pull request Feb 3, 2025
@trask
Switch to new GitHub App Token (#13158)
12b0af6
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@jaydeluca jaydeluca jaydeluca approved these changes

@adrielp adrielp adrielp approved these changes

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
3 participants
@trask @adrielp @jaydeluca