ksobrenat32 opened a new pull request, #35910: URL: https://github.com/apache/beam/pull/35910
This pull request introduces a new GitHub Actions workflow for automated infrastructure policy enforcement and updates the enforcement documentation and configuration to support improved notification and reporting features. The most important changes are grouped below: **GitHub Actions Integration:** * Added a new workflow file (`.github/workflows/beam_Infrastructure_PolicyEnforcer.yml`) to automatically check for IAM and service account policy violations on a weekly schedule or via manual trigger. The workflow runs both IAM and account keys enforcement scripts with the `announce` action, creating/updating GitHub issues and sending email notifications for violations. **Documentation Enhancements (`infra/enforcement/README.md`):** * Expanded documentation to describe new notification methods (GitHub issues, email, console output) and clarified the available enforcement actions (`announce`, `print`, etc.), including required environment variables for notifications. **Configuration Update:** * Changed the default enforcement action in `infra/enforcement/config.yml` from `check` to `announce` to enable automatic issue creation and email notifications by default. > This is part of my GSoC tasks. @pabloem -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: [email protected] For queries about this service, please contact Infrastructure at: [email protected]
