Keeping your GitHub Actions and workflows secure Part 1: Preventing pwn requests | GitHub Security Lab

PHOTO

Fri May 12 2023 15:06:53 GMT+0000 (Coordinated Universal Time)

Saved by @mybusybeeadmin

    # Only as a temporary fix.
    on:
      pull_request_target:
        types: [labeled]

    jobs:
      build:
        name: Build and test
        runs-on: ubuntu-latest
        if: contains(github.event.pull_request.labels.*.name, 'safe to test')

https://securitylab.github.com/research/github-actions-preventing-pwn-requests/

Save snippets that work from anywhere online with our extensions

Available in the Chrome Web Store

Get Firefox Add-on

Get VS Code extension

Comments

More like this

Git

@mybusybeeadmin

Keeping your GitHub Actions and workflows secure Part 1: Preventing pwn requests | GitHub Security Lab Keeping your GitHub Actions and workflows secure Part 1: Preventing pwn requests | GitHub Security Lab Keeping your GitHub Actions and workflows secure Part 1: Preventing pwn requests | GitHub Security Lab Keeping your GitHub Actions and workflows secure Part 1: Preventing pwn requests | GitHub Security Lab Keeping your GitHub Actions and workflows secure Part 1: Preventing pwn requests | GitHub Security Lab

Browse more snippets >>