Skip to content

[New Rule] Adding Coverage for AWS STS AssumeRoot by Rare User and Member Account #2729

[New Rule] Adding Coverage for AWS STS AssumeRoot by Rare User and Member Account

[New Rule] Adding Coverage for AWS STS AssumeRoot by Rare User and Member Account #2729

Workflow file for this run

name: Community
on:
pull_request_target:
types:
- opened
issues:
types:
- opened
jobs:
label:
runs-on: ubuntu-latest
steps:
- name: Check if member of elastic org
uses: actions/github-script@v6
id: membership
with:
github-token: ${{ secrets.READ_ORG_TOKEN }}
result-encoding: string
script: |
try {
const result = await github.rest.orgs.getMembershipForUser({
org: "elastic",
username: '${{ github.actor }}'
})
console.log(result?.data?.state)
if (result?.data?.state == "active"){
console.log("%s: detected as an active member of elastic org", '${{ github.actor }}')
return "member";
} else {
console.log("%s: not detected as active member of elastic org", '${{ github.actor }}')
return "notMember";
}
} catch (error) {
return "notMember";
}
- name: Add label for community members
uses: actions/github-script@v6
if: ${{ steps.membership.outputs.result == 'notMember' }}
with:
script: |
github.rest.issues.addLabels({
issue_number: context.issue.number,
owner: context.repo.owner,
repo: context.repo.repo,
labels: ['community']
})