diff --git a/.github/workflows/check-tuf-timestamps.yml b/.github/workflows/check-tuf-timestamps.yml index 771fc19aca..3e91db3aa1 100644 --- a/.github/workflows/check-tuf-timestamps.yml +++ b/.github/workflows/check-tuf-timestamps.yml @@ -23,7 +23,7 @@ permissions: contents: read jobs: - test-go: + check-signatures-old-tuf: strategy: matrix: os: [ubuntu-latest] diff --git a/.github/workflows/check-updates-timestamps.yml b/.github/workflows/check-updates-timestamps.yml index e9bf4b2b2a..04d164dbe6 100644 --- a/.github/workflows/check-updates-timestamps.yml +++ b/.github/workflows/check-updates-timestamps.yml @@ -23,7 +23,7 @@ permissions: contents: read jobs: - test-go: + check-signatures: strategy: matrix: os: [ubuntu-latest] @@ -164,7 +164,7 @@ jobs: with: payload: | { - "text": "${{ job.status }}\n${{ github.event.pull_request.html_url || github.event.head.html_url }}", + "text": "${{ job.status }}, "blocks": [ { "type": "section", diff --git a/.github/workflows/update-tuf-timestamp-signature.yaml b/.github/workflows/update-tuf-timestamp-signature.yaml index e280cc3c2c..0d4516ecef 100644 --- a/.github/workflows/update-tuf-timestamp-signature.yaml +++ b/.github/workflows/update-tuf-timestamp-signature.yaml @@ -88,3 +88,24 @@ jobs: - name: Smoke test production environment run: | fleetctl package --type deb --enroll-secret=foo --fleet-url=https://localhost:8080 --fleet-desktop + + - name: Slack notification + if: failure() + uses: slackapi/slack-github-action@e28cf165c92ffef168d23c5c9000cffc8a25e117 # v1.24.0 + with: + payload: | + { + "text": "${{ job.status }}", + "blocks": [ + { + "type": "section", + "text": { + "type": "mrkdwn", + "text": "⚠️ Failed to update timestamp signature on https://updates.fleetdm.com/timestamp.json\nhttps://github.com/fleetdm/fleet/actions/runs/${{ github.run_id }}" + } + } + ] + } + env: + SLACK_WEBHOOK_URL: ${{ secrets.SLACK_G_HELP_ENGINEERING_WEBHOOK_URL }} + SLACK_WEBHOOK_TYPE: INCOMING_WEBHOOK \ No newline at end of file