fix: add tls insecure to generated otlp exporter config

florentianayuwono · Copilot · florentianayuwono · commit da087c647354 · 2026-04-30T13:49:43.000+07:00
The OTLP endpoint otlp.actions.self-hosted-runners.internal:4317 uses
a self-signed certificate that does not match its hostname. The existing
github.yaml config already sets tls.insecure: true for the same endpoint.
Add the same setting to the generated exporter fragment to prevent the
TLS handshake failure.

Co-authored-by: Copilot &lt;223556219+Copilot@users.noreply.github.com&gt;
diff --git a/actions/enable-log-forwarding/enable_log_forwarding.py b/actions/enable-log-forwarding/enable_log_forwarding.py
@@ -217,6 +217,7 @@ def build_config(
         config["exporters"] = {
             exporter_name: {
                 "endpoint": resolved_endpoint,
+                "tls": {"insecure": True},
             }
         }
 
diff --git a/actions/enable-log-forwarding/tests/test_enable_log_forwarding.py b/actions/enable-log-forwarding/tests/test_enable_log_forwarding.py
@@ -159,6 +159,7 @@ def test_build_config_exporter_block_is_conditionally_defined(
     assert ("exporters" in config) is has_exporters_block
     if has_exporters_block:
         assert config["exporters"][module.EXPORTER_NAME]["endpoint"] == "otel:4318"
+        assert config["exporters"][module.EXPORTER_NAME]["tls"] == {"insecure": True}
 
 
 @pytest.mark.parametrize(

Original file line number	Diff line number	Diff line change
`@@ -217,6 +217,7 @@ def build_config(`
`217`	`217`	`config["exporters"] = {`
`218`	`218`	`exporter_name: {`
`219`	`219`	`"endpoint": resolved_endpoint,`
	`220`	`+ "tls": {"insecure": True},`
`220`	`221`	`}`
`221`	`222`	`}`
`222`	`223`