Hello,
We are now in transition in publishing our automation scripts to GitHub and configuring Ci and Cd actions.
Today we came up with an idea to automatically inform (some) DataMiner users (Operators, Administrators, etc) when such a deployment via Cd was done on the system.
The only thing is that there are 3th party actions that can do this (sending a report or custom mail) but they aren't certified by GitHub so I'm wondering if we can use those in public and private repos?
Example actions:
https://github.com/marketplace/actions/send-email
http://www.cinotify.cc/docs/sending-email-from-github-actions/
Purely from a security standpoint I would advise not to use the first action you linked. You are sharing full credentials to your smtp server (I do not know which one you will use but I assume an internal one) with an unverified third party publisher.
The second one claims super convenience and no setup by the user, but leaves me questioning what service they use in the background...
I would not recommend the second one since it is really not transparent on how it works and what services it uses.
If this is a real life use case and there is a lot of value in there we could take a look at implementing this functionality in the Cloud Services offering.
Ok lets see what the futures brings, if this would be used a lot we could make one internal.
For now we aren’t going to use it. It was just an idea that popped up in a demo session.
So you would use the second one?
Would it be a good idea to great out own basic actions for stuff like mailing?