[SELC-8252] feat: Added module for container_app into Onboarding by giampiero-ferrara · Pull Request #160 · pagopa/selfcare

giampiero-ferrara · 2026-03-16T09:38:22Z

List of Changes

Added config for container_app for onboarding
Added config for current locals for function

Motivation and Context

How Has This Been Tested?

Screenshots (if appropriate):

Types of changes

Bug fix (non-breaking change which fixes an issue)
New feature (non-breaking change which adds functionality)
Breaking change (fix or feature that would cause existing functionality to not work as expected)

Checklist:

My change requires a change to the documentation.
I have updated the documentation accordingly.

.github/workflows/onboarding_release_infra_resources.yml

+    uses: ./.github/workflows/onboarding_call_release_resources_infra.yml
+    name: '[Dev] Resources Infra Release (AR)'
+    if: ${{ ((startsWith(github.ref_name, 'releases/') != true && inputs.env == null) || inputs.env == 'dev') && inputs.target != 'pnpg' }}
+    secrets: inherit
+    with:
+      environment: dev
+      dir: infra/resources/dev-ar
+      env_vars: ${{ github.event_name == 'workflow_dispatch' && format('TF_VAR_image_tag={0}', inputs.image_tag) || '' }}
+
+  release_uat_ar:


To fix the problem, explicitly declare a minimal permissions block so this workflow does not rely on repository/organization defaults. Since the only direct use of repository data here is via actions/checkout and git rev-parse, read-only access to repository contents is sufficient. We do not see any need for write access or for other scopes (issues, pull-requests, etc.) in this file.

The single best fix with minimal functional impact is to add a workflow-level permissions block right after the name: or on: section. This will apply to all jobs (prepare and the release_* jobs) unless a job overrides it. Use:

permissions: contents: read

This grants only read access to repository contents, which is enough for actions/checkout to function. No other code changes, imports, or definitions are required. Concretely, edit .github/workflows/onboarding_release_infra_resources.yml near the top so that lines after name: Infra Resources include the new permissions block.

.github/workflows/onboarding_release_infra_resources.yml

+    uses: ./.github/workflows/onboarding_call_release_resources_infra.yml
+    name: '[UAT] Resources Infra Release (AR)'
+    if: ${{ ((startsWith(github.ref_name, 'releases/') == true && inputs.env == null) || inputs.env == 'uat') && inputs.target != 'pnpg' }}
+    secrets: inherit
+    with:
+      environment: uat
+      dir: infra/resources/uat-ar
+      env_vars: ${{ github.event_name == 'workflow_dispatch' && format('TF_VAR_image_tag={0}', inputs.image_tag) || '' }}
+
+  release_prod_ar:


In general, the fix is to explicitly declare a permissions: block so the GITHUB_TOKEN has only the minimal scopes required. Since the shown prepare job only needs to read the repository (for checkout and computing the SHA), and the downstream reusable workflows should declare any additional needs, the safest non‑breaking change is to add a workflow‑level permissions: block with read‑only permissions for contents (and optionally packages if needed, but we see no evidence here). This applies to all jobs that don’t override permissions, including prepare and the release_* jobs.

Concretely, in .github/workflows/onboarding_release_infra_resources.yml, add a top‑level permissions: block right after the name: line (before on:). Set it to:

permissions: contents: read

This will ensure GITHUB_TOKEN cannot perform write operations on repository contents from this workflow unless a specific job explicitly widens permissions, preserving existing behavior for read operations and the ability of the reusable workflow to define its own requirements. No imports, methods, or additional definitions are needed beyond this YAML change.

.github/workflows/onboarding_release_infra_resources.yml

+    uses: ./.github/workflows/onboarding_call_release_resources_infra.yml
+    name: '[Prod] Resources Infra Release (AR)'
+    if: ${{ inputs.env == 'prod' && inputs.target != 'pnpg' }}
+    secrets: inherit
+    with:
+      environment: prod
+      dir: infra/resources/prod-ar
+      env_vars: ${{ github.event_name == 'workflow_dispatch' && format('TF_VAR_image_tag={0}', inputs.image_tag) || '' }}
+
+  release_dev_pnpg:


To fix the problem, explicitly define a restrictive permissions block in the workflow so that all jobs, including those that call the reusable workflow, run with least-privilege GITHUB_TOKEN permissions by default. Since the prepare job only checks out code and reads the current commit, it requires only contents: read. Without more context, the safest minimal explicit setting is a top-level permissions: contents: read, which applies to all jobs that don’t override it.

Concretely, edit .github/workflows/onboarding_release_infra_resources.yml near the top of the file, adding a root-level permissions: block between the name: and on: keys. No imports or additional methods are needed; this is purely a YAML configuration change. We do not modify any of the individual jobs or the uses: lines, preserving existing behavior while constraining GITHUB_TOKEN to read-only repository contents.

.github/workflows/onboarding_release_infra_resources.yml

+    name: Prepare Image Tag
+    runs-on: ubuntu-24.04
+    outputs:
+      image_tag: ${{ steps.setsha.outputs.short_sha }}
+    steps:
+      - uses: actions/checkout@34e114876b0b11c390a56381ad16ebd13914f8d5 # v4
+      - name: Set Short Git Commit SHA
+        id: setsha
+        run: |
+          calculatedSha=$(git rev-parse --short ${{ github.sha }})
+          echo "short_sha=sha-$calculatedSha" >> $GITHUB_OUTPUT
+
+  release_dev_ar:


In general, the fix is to explicitly define permissions for the GITHUB_TOKEN in the workflow, restricting them to the minimum required. For a workflow that primarily checks out code and reads commit metadata, contents: read at the workflow root is typically sufficient. This avoids inheriting broader repository defaults and documents the workflow’s intended access.

The best single fix here, without changing functionality, is to add a root-level permissions: block (applies to all jobs that do not override it) right after the name: declaration, with contents: read. The called reusable workflow (onboarding_call_release_resources_infra.yml) may define its own permissions if it needs more, but we cannot modify it based on the snippet. The prepare job only needs read access to the repo to allow actions/checkout to function, so contents: read is adequate. No additional imports or external dependencies are involved; this is purely a YAML configuration change in .github/workflows/onboarding_release_infra_resources.yml.

Concretely:

Edit .github/workflows/onboarding_release_infra_resources.yml.

Insert:
permissions: contents: read
between the existing name: Infra Resources line and the on: block (lines 1–3 in the snippet).

Leave all jobs and steps unchanged.

andrea-putzu · 2026-03-16T17:20:43Z

infra/resources/dev-ar/onboarding.tf

+    }
+  ]
+
+  onboarding_cdc_container_app = {


continer app conf is present as default

andrea-putzu · 2026-03-16T17:21:21Z

infra/resources/dev-ar/onboarding.tf

+    "NOTIFICATION-FUNCTIONS-API-KEY"        = "fn-onboarding-primary-key"
+  }
+
+  onboarding_cdc_probes = [


check for default quarkus probes

andrea-putzu · 2026-03-16T17:22:05Z

infra/resources/dev-ar/onboarding.tf

+  secrets_names                  = local.onboarding_ms_secrets_names
+  key_vault_resource_group_name  = local.key_vault_resource_group_name
+  key_vault_name                 = local.key_vault_name
+  probes                         = local.onboarding_ms_probes


onboarding_ms_probes may be refactorized as ms_probes

…epo (#171) * Update headers for anac csv * Rename pdnd resources * remove validation from institution resource * fill some field description (#124) * Removed validation constraints on resource objects * Fix token analyzer for search in anac stations * Added logic to write index for ivass registry * Added api to get insurance companies by tax code and description * Changed name of ivass service from getAS to getInsurances * Added unit test about reader of insurance index * Added API to retrieve insurance company according to tax code * Added origin ID to stored document * Modified logs in order to have significant verbosity * Added api to search insurance company by description * Fix on get stations and get insurances if not file is found * Added try-catch resources to process file of ANAC/IVASS * Added format rule on tax code * Added left padding logic for taxCode in IVASS and ANAC * Added filter on getInsurance from IVASS registry * Update variables for ivass with trim whitespaces * Update helm variables for ivass * fix: Helm host dev * Update to jdk 17 * [SELC-3339] Add PodDisruptionBudget manifest in DEV and UAT (#144) * [SELC-3339] Disable PDB for all environments (#145) * [SELC-3340] Set host on ingress (UAT) (#147) * [SELC-3394] Added retry for NationalRegistries API (#149) Co-authored-by: Argentieri Luca <luca.argentieri@emeal.nttdata.com> * [SELC-3394] Added retry for NationalRegistries API (#149) (#151) * Added github action to detect breaking changes into open api (#150) * [SELC-3341] Set host on ingress (PROD) (#148) * [SELC-3470] Increase replicas - UAT (#152) * [SELC-3467] Increase replicas - PROD (#153) * [SELC-3485] Set resource request and limits - DEV (#154) * Update station model to avoid parse errors on boolean fields * [SELC-3487] Feat: add sftp connection to retrieve ANAC csv (#157) * add FTPClient and Method for download file from sftp * add sftp connection to retrieve ANAC csv * remove known-host file from repo * [SELC-3488] Feat: add scheduled Job to update anac index from sftp (#158) * add FTPClient and Method for download file from sftp * add scheduled Job to update anac index from sftp * add sftp connection to retrieve ANAC csv * remove known-host file from repo * Added commit id github action checkout * [SELC-3488] fix: update default port for anac_ftp (#160) update default port for anac_ftp * [SELC-3487][SELC-3488] (#161) * [SELC-3487] Feat: add sftp connection to retrieve ANAC csv (#157) * add FTPClient and Method for download file from sftp * add sftp connection to retrieve ANAC csv * remove known-host file from repo * [SELC-3488] Feat: add scheduled Job to update anac index from sftp (#158) * add FTPClient and Method for download file from sftp * add scheduled Job to update anac index from sftp * add sftp connection to retrieve ANAC csv * remove known-host file from repo * [SELC-3488] fix: update default port for anac_ftp (#160) update default port for anac_ftp --------- Co-authored-by: Manuel Rafeli <manuel.rafeli@pagopa.it> * [SELC-3514] Feat: - ANAC file update in AzureStorage (#162) * - added ANAC file update in AzureStorage when retrieve new file from FTP Server - added optional retrieving of file from Azure storage if server ftp doesn't contain file of the day * refactor InputStream to ByteArrayInputStream and add error log * update README * Update step for check breaking changes into github action * [SELC-3491] Set resource request and limits - UAT (#166) * [SELC-3607] Increase replicas - DEV (#167) * [SELC-3492] Set resource request and limits - PROD (#168) * feat: upgrade commons version (#170) * [EC-135] Add Terraform configuration to manage repository settings (#172) * [EC-156] Add pnpg release workflow (#173) * [EC-156] Fix typo in workflow file name (#174) * [SELC-4256] feat: modify nationalRegistriesConnector response management to avoid BadGatewayExceptions(502) (#176) * ops: disable log health check (#177) * ops: disable log health check * feat: modify verifyLegal response management (#178) * fix: Update pipeline * [SELC-3954] ops: using a common GitHub Action Swagger update (#180) * fix: Update pipeline * fix: Update pipeline * fix: Update pipeline * fix: Update pipeline * fix: Update pipeline * fix: Update pipeline * [EC-125] Add Container App infrastructure (#175) Co-authored-by: manuraf <manuel.rafeli@pagopa.it> * [EC-125] fix: added JWT_TOKEN_PUBLIC_KEY as secret (#182) * [SELC-4512] Added apim group BFF proxy for ca (#183) * chore: deployment k8s replica 0 dev (#184) * chore: fix private_dns_name pnpg * chore: added geotaxonomy-api-key secret * chore: create release pipeline * chore: remove api bff proxy unused by frontend #186 * chore: deployment k8s replica 0 uat * chore: refactor Promote prerelase release * chore: added ANAC and LUCENE env values * chore: added REST_CLIENT timeout * chore: Workload profiles migration (#188) * chore: private_dns_name for new cae * chore: Migration to Container App module with name and workload_profile empty (#189) * chore: Migration uat using terraform ca module with suffix (#191) * [SELC-4462] feat: added API to retrieve insurances by ivass code (#190) Co-authored-by: pierpaolo.didato@emeal.nttdata.com <Aiap1955?^@#> * [SELC-4622] feat: added deprecated on method findByTaxCode for IVASS registry (#192) Co-authored-by: pierpaolo.didato@emeal.nttdata.com <Aiap1955?^@#> * [SELC-4462] fix: Updated Swagger APIs description * [SELC-4462] fix: updated open api for apim * [SELC-4462] fix: Changed id for IVASS document from taxCode to originId * [SELC-4462] fix: Added trim to remove whitespaces into taxCode * [SELC-4462] fix: Added check to remove null fields from API response * chore: added initialDelaySeconds to startup health check (#199) * Fix find by tax code (#200) * [SELC-4850] fix: 500 error when search Institutions with 3 chars (#201) * [SELC-4783] feat: Added scheduler for indexing UOs with field codice_fiscale_sfe * [SELC-4851] feat: Added API to get UO from taxCodeSfe * ops: GitHub Action to detect breaking changes on Swagger (#204) * Pin dependencies (#195) Co-authored-by: renovate-pagopa[bot] <164534245+renovate-pagopa[bot]@users.noreply.github.com> * [APIM-v2 MIGRATION] change reference to apim-v2 (#205) * [SELC-5178] feat: Added classes for assertion generation (#206) * [SELC - 5220] feat: added PDND InfoCamere endpoint retrieveInstitutionsByDescription (#207) * [SELC - 5176] feat: added new endpoint to retrieve PDND infocamere institution by taxCode (#208) * [SELC-5177] feat: added PDND rest client and configs (#209) * [SELC-5177] feat: added pdnd connector with cache (#210) * [SELC-5177] feat: added cache to assertion generator and token provider (#211) * chore: Move to Container App Env workload DEV (#212) * SELC-5268 feat: added PDND authentication to infocamere API (#213) Co-authored-by: empassaro <emanuele.passaro@emeal.nttdata.com> * [SELC-5176] feat: Updated mapper to set city, county and zipCode (#214) Co-authored-by: pierpaolo.didato@emeal.nttdata.com <Aiap1955?^@#> * [SELC - 5298] feat: added PDND infocamere API to APIM (#215) * chore: Move to Container App Env workload UAT (#216) * chore: Move to Container App Env workload PROD (#217) * [SELC-4443] fix: added logs to detect anac services implementation * [SELC-4840] feat: added Ivass interceptor and utils to handle zip (#218) * [SELC-4840] feat: added Ivass base path config and set config for ivass rest connector (#219) * [SELC-4840] feat: added ivass client and ivass connector in rest connectors (#221) * [SELC-5587] feat: removed deprecated api for IVASS search by taxCode (#222) * hotfix: Disable check timestamp not Null on return Business list (#223) * [SELC-1548] feat: added scheduler for AOO IPA index (#224) * [SELC-5311] feat: Added Opex dashboard (dev) (#225) * [SELC-5311] feat: Added github action for opex * [SELC - 1547] feat: added scheduler for Institutions IPA index (#227) * fix: add skip_provider_registration true (#228) * [PNPG-241] feat: Added Tag support-pnpg to legalAddress API (#230) * [PNPG-240] feat: Added Tag support-pnpg to institutionsByLegalTaxId API (#229) * fix: Environment on opex action (#231) * [SELC-5311] feat: Added Opex dashboard * Set default value to ORIGIN Co-authored-by: pierpaolo.didato@emeal.nttdata.com * [PNPG-261] fix: separated national registries api summaries (#234) * fix: removed circuitBreaker and retry logic (#237) Co-authored-by: pierpaolo.didato@emeal.nttdata.com <Aiap1955?^@#> * [SELC-5962] feat: added tag internal-v1 to PDND-infocamere (#238) * [SALC-6134] Adding new scale rule for UAT (#239) * [SELC-5821] feat: migration to Spring Boot 3 * [SELC-5821] fix: Updated pom version for spring doc web-ui * [SELC-5821] fix: fixed rest client config for geotaxonomy apis * Updated selc-commons references * Fix request interceptor * [SELC-6432]: feat: Added check on contact field * feat: update ubuntu from 20.04 to 24.04 * [SELC-6728] fix: Fixed method of configuration of swagger * [SELC-6825] Add codeowners (#249) * [SELC-6839] feat: updated open api documentation Co-authored-by: pierpaolo.didato@emeal.nttdata.com <Aiap1955?^@#> * [SELC-6690] feat: added tag to expose IPA api to internal group * [SELC-6690] fix: removed tag from institution controller * fix: updated operation id for PDND infocamere APIs * Fix/empty mail from csv Co-authored-by: gianmarcoplutino <gianmarco.plutino@pagopa.it> Co-authored-by: pierpaolo.didato@emeal.nttdata.com <Aiap1955?^@#> * Fix swagger UI * [SELC-7257] feat: Created API to retrieve institution detail including atecoCode * Fix release-ms action in order to upload new APIs into APIM * [SELC-7257] fix: changed attribute atecoCode into a list * [SELC-7388] feat: Added new fields to pdnd to retrieve the legal nature of the entity and vatnumber * Added ResourceNotFoundException for api visura by rea * [SELC-7358] feat: Added api to retrieve xml visura document by taxCode (#261) Co-authored-by: pierpaolo.didato@emeal.nttdata.com <Aiap1955?^@#> * Fixed swagger for get visura document API * Renamed packages with bad naming * Fix error management in case of getInstitution API for PDND Infocamere (#264) * [SELC-7498] chore: Update modules version (#265) * [SELC-7548] feat: Add Azure AI Search for Institution indexing (#266) * [SELC-7550] feat: Implement event-driven indexing workflow via Dapr (#267) * [SELC-7550] feat: Add Dapr telemetry component for Application Insights (#268) * [SELC-7550] feat: Adding new domain config name (#269) * chore: Adding configuration (cherry picked from commit 0c74db10c117435db128651db20e00c8dde2584a) * chore: Adding configuration infra (cherry picked from commit b9f78c1dbbc51b2ce984ccec987fa216c4854b50) * [SELC-7553] feat: Add endpoint to search for institutions (#270) * Update CODEOWNERS * [SELC-7613] feat: Added new attr from response of infocamere * Fix source for anac data download * fix: Updated infra added env for anac FTP mode * [SELC-7765] feat: added new references to secrets for invitalia PDND infocamere (#275) * [SELC-7764] feat: added references for secret to encrypt/decrypt visura document * [SELC-7545]: fix: Updated selc common version (#277) * [SELC-7545]: fix: Updated selc common version * [SELC-7794] feat: Added onboarding-sdk * [SELC-7763] feat: Added dependency for crypto sdk to encrypt visura document * [SELC-7818]: chore: Filter Institution Search Results to Include Only Enabled Products (#282) * [SELC-7816] chore: Update openApi (#283) * Improve Entity Indexing and Min-Length Query Support for Azure AI Search (#284) * [SELC-7826] feat: Fixed search by category when category major than 3 characters * [SELC-7762] feat: added async service to store visura on Azure * Updates variables for env UAT and PROD * Updated variable for anac loader data to sftp * Feature/add cache * [SELC-7891] feat: Added localizzazioni node for pdnd vsiura mapper * chore: Update opex config * chore: Update opex config * [SELC-7897] feat: Avoided double encryption during visura storage * [SELC-7899] feat: disable dapr for pnpg (#294) * [SELC-7896] feat: Updated junit test for redis cache * [SELC-7892] feat: added env variable to skip localizzazione nodes from visura * feat: updated starter-parent version * fix: updated PDNDVisuraImpresa mapper * feat: Updated sdk onboarding * chore: Update status api tag (#299) * Update application.yml * Update infra release workflow * Update call_release_resources_infra.yml * chore: Add tag to retrieveInstitutionOnSearchEngine * chore: Migrating pipelines --------- Co-authored-by: manuraf <manuel.rafeli@pagopa.it> Co-authored-by: Pierpaolo Di Dato <pierpaolo.didato@emeal.nttdata.com> Co-authored-by: pierpaolodidato89 <137791912+pierpaolodidato89@users.noreply.github.com> Co-authored-by: pierpaolo.didato@emeal.nttdata.com <Aiap1955?^@#> Co-authored-by: Andrea Grillo <andrea.grillo@pagopa.it> Co-authored-by: flaminiaScarciofolo <113031535+flaminiaScarciofolo@users.noreply.github.com> Co-authored-by: Argentieri Luca <luca.argentieri@emeal.nttdata.com> Co-authored-by: Giulia Tremolada <124147597+giulia-tremolada@users.noreply.github.com> Co-authored-by: renovate-pagopa[bot] <164534245+renovate-pagopa[bot]@users.noreply.github.com> Co-authored-by: stefano-rughetti-nttdata <163128491+stefano-rughetti-nttdata@users.noreply.github.com> Co-authored-by: gianmarcoplutino <119858159+gianmarcoplutino@users.noreply.github.com> Co-authored-by: empassaro <113031808+empassaro@users.noreply.github.com> Co-authored-by: empassaro <emanuele.passaro@emeal.nttdata.com> Co-authored-by: Giampiero Ferrara <giampiero.ferrara@emeal.nttdata.com> Co-authored-by: Alessio Dore <57567806+AleDore@users.noreply.github.com> Co-authored-by: gianmarcoplutino <gianmarco.plutino@pagopa.it> Co-authored-by: selfcare-github-bot <146744076+selfcare-github-bot@users.noreply.github.com>

giampiero-ferrara added 2 commits March 16, 2026 10:28

Added module for container app

1374e5c

Testing pipeline

822ffff

giampiero-ferrara had a problem deploying to dev-ci March 16, 2026 09:38 — with GitHub Actions Failure

github-actions bot added the ops label Mar 16, 2026

github-advanced-security bot found potential problems Mar 16, 2026

View reviewed changes

giampiero-ferrara had a problem deploying to dev-ci March 16, 2026 10:50 — with GitHub Actions Failure

giampiero-ferrara added 4 commits March 16, 2026 12:53

Added module for container app onboarding

6c78b5b

Added module for container app onboarding-cdc

7f025e2

Fixed description of variable

5a29302

Added function config

02f1b62

giampiero-ferrara temporarily deployed to dev-ci March 16, 2026 13:42 — with GitHub Actions Inactive

Fixed sha image

327e8b5

giampiero-ferrara temporarily deployed to dev-ci March 16, 2026 13:50 — with GitHub Actions Inactive

github-advanced-security bot found potential problems Mar 16, 2026

View reviewed changes

giampiero-ferrara temporarily deployed to dev-ci March 16, 2026 13:55 — with GitHub Actions Inactive

giampiero-ferrara temporarily deployed to dev-cd March 16, 2026 13:55 — with GitHub Actions Inactive

giampiero-ferrara temporarily deployed to dev-cd March 16, 2026 14:02 — with GitHub Actions Inactive

giampiero-ferrara temporarily deployed to dev-cd March 16, 2026 14:04 — with GitHub Actions Inactive

Merge branch 'main' into feature/SELC-8252

2fb8846

giampiero-ferrara temporarily deployed to dev-ci March 16, 2026 15:56 — with GitHub Actions Inactive

giampiero-ferrara temporarily deployed to dev-ci March 16, 2026 16:39 — with GitHub Actions Inactive

giampiero-ferrara temporarily deployed to dev-ci March 16, 2026 16:42 — with GitHub Actions Inactive

giampiero-ferrara had a problem deploying to dev-cd March 16, 2026 16:42 — with GitHub Actions Error

giampiero-ferrara had a problem deploying to dev-ci March 16, 2026 16:42 — with GitHub Actions Failure

giampiero-ferrara force-pushed the feature/SELC-8252 branch from 81eec6c to 2fb8846 Compare March 16, 2026 16:49

giampiero-ferrara temporarily deployed to dev-ci March 16, 2026 16:49 — with GitHub Actions Inactive

giampiero-ferrara temporarily deployed to dev-ci March 16, 2026 16:50 — with GitHub Actions Inactive

giampiero-ferrara had a problem deploying to dev-ci March 16, 2026 16:50 — with GitHub Actions Failure

giampiero-ferrara marked this pull request as ready for review March 16, 2026 16:50

giampiero-ferrara requested review from a team and giulia-tremolada as code owners March 16, 2026 16:50

giampiero-ferrara had a problem deploying to dev-ci March 16, 2026 16:50 — with GitHub Actions Failure

giampiero-ferrara temporarily deployed to dev-ci March 16, 2026 16:50 — with GitHub Actions Inactive

andrea-putzu reviewed Mar 16, 2026

View reviewed changes

Update config

43c9cd3

giampiero-ferrara had a problem deploying to dev-ci March 17, 2026 10:18 — with GitHub Actions Failure

andrea-putzu approved these changes Mar 17, 2026

View reviewed changes

gianmarcoplutino merged commit cd58e3c into main Mar 17, 2026
6 of 9 checks passed

gianmarcoplutino deleted the feature/SELC-8252 branch March 17, 2026 10:47

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

[SELC-8252] feat: Added module for container_app into Onboarding#160

[SELC-8252] feat: Added module for container_app into Onboarding#160
gianmarcoplutino merged 9 commits intomainfrom
feature/SELC-8252

giampiero-ferrara commented Mar 16, 2026 •

edited

Loading

Uh oh!

Check warning

Copilot Autofix

Check warning

Copilot Autofix

Check warning

Copilot Autofix

Check warning

Copilot Autofix

andrea-putzu Mar 16, 2026

Uh oh!

andrea-putzu Mar 16, 2026

Uh oh!

andrea-putzu Mar 16, 2026

Uh oh!

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

3 participants

@@ -1,5 +1,8 @@
             name: Infra Resources
+            permissions:
+              contents: read
             on:
               push:
                 branches:

Conversation

giampiero-ferrara commented Mar 16, 2026 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

List of Changes

Motivation and Context

How Has This Been Tested?

Screenshots (if appropriate):

Types of changes

Checklist:

Uh oh!

Check warning

Copilot Autofix

Check warning

Copilot Autofix

Check warning

Copilot Autofix

Check warning

Copilot Autofix

andrea-putzu Mar 16, 2026

Choose a reason for hiding this comment

Uh oh!

andrea-putzu Mar 16, 2026

Choose a reason for hiding this comment

Uh oh!

andrea-putzu Mar 16, 2026

Choose a reason for hiding this comment

Uh oh!

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

3 participants

giampiero-ferrara commented Mar 16, 2026 •

edited

Loading