Report when bot stops firing or runs into issues

[sethmlarson]

Currently there isn't any indication that the periodic execution in GitHub Actions stops working (beyond CVE IDs not getting assigned). Preferably somehow the automation would send an email to security@python.org if it stopped functioning so that PSRT folks are alerted. Very open-ended how this is implemented.

[StanFromIreland]

As I suggested in the duplicate, maybe we can wire it into our Sentry instance?

[sethmlarson]

@StanFromIreland Yeah that was the plan before, we should maybe lift some of that from #14 into a separate pull request that monitors for health. Then we can create an alert based on that monitor?

[StanFromIreland]

Sure, I'll look into that.

[StanFromIreland]

Seems to not be working, I don't see any report for https://github.com/python/psrt-ghsa-bot/actions/runs/27712320449/job/81976236606

[StanFromIreland]

I added logging, and indeed the environment variable is being read.

It seems to be sending check-ins alright:

[StanFromIreland]

@JacobCoffee maybe you set the cron wrong? It should in the UTC timezone, and hourly (0 * * * *) to match the workflow.

[StanFromIreland]

Also, we may want to disable Sentry for manual runs as it will be confused with the cron.

[JacobCoffee]

even better, i forgot to. make the cron on sentry side :)

i think it should worknow ?

[StanFromIreland]

No worries, thanks for setting it up!

Could you also please share a link to that page? I'm looking at https://python-software-foundation.sentry.io/monitors/crons/?project=4511581905223680&statsPeriod=30d which doesn’t show anything for me.