fefbf1e3ea
- POST /oidc/token: GitHub OIDC JWT exchange (bootstrap + agent-scoped modes) - POST/GET/DELETE /oidc/trust-policies: trust policy CRUD with enforcement - DB migration 022: oidc_trust_policies table with provider/repo/branch/agent_id - GitHub Actions: register-agent and issue-token actions with full READMEs - Trust policy enforcement rejects token exchanges not matching registered policies - Bootstrap mode issues agents:write token for new agent registration without agentId Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
40 lines
1.0 KiB
YAML
40 lines
1.0 KiB
YAML
name: 'SentryAgent Register Agent'
|
|
description: >
|
|
Registers a new agent in SentryAgent.ai using GitHub OIDC token exchange.
|
|
No long-lived API credentials required — the GitHub Actions OIDC token is
|
|
exchanged for a short-lived SentryAgent.ai access token to call POST /agents.
|
|
|
|
author: 'SentryAgent.ai'
|
|
|
|
branding:
|
|
icon: 'shield'
|
|
color: 'blue'
|
|
|
|
inputs:
|
|
api-url:
|
|
description: >
|
|
Base URL of the SentryAgent.ai AgentIdP API.
|
|
Example: https://idp.sentryagent.ai
|
|
required: true
|
|
agent-name:
|
|
description: >
|
|
Unique name (email) for the agent being registered.
|
|
Must be a valid email address format used as the agent identity.
|
|
required: true
|
|
agent-description:
|
|
description: >
|
|
Optional human-readable description of the agent's purpose.
|
|
Stored as the agent owner field.
|
|
required: false
|
|
default: ''
|
|
|
|
outputs:
|
|
agent-id:
|
|
description: >
|
|
The UUID of the newly registered agent.
|
|
Use in subsequent steps to issue tokens or manage credentials.
|
|
|
|
runs:
|
|
using: 'node20'
|
|
main: 'action.js'
|