Fix workflow not working properly when running from fork #2595

GoldenJaden · 2024-01-23T10:29:14Z

Changed trigger from "pull_request" to "pull_request_target", which will grant write permissions and secrets to workflow (even from forks).

Documented this warning in the code:

Caution: 
the use of "pull_request_target" trigger allows to successfully
run workflow even when triggered from a fork. The trigger grants
access to repo's secrets and gives write permission to the runner.
This can be used to run malicious code on untrusted PR, so, please
DO NOT checkout any PR's ongoing commits (aka github.event.pull_request.head.sha)
while using this trigger.

Change workflows trigger

ccd4def

GoldenJaden requested review from neSpecc, gohabereg, TatianaFomina and ilyamore88 as code owners January 23, 2024 10:29

neSpecc approved these changes Feb 26, 2024

View reviewed changes

Merge branch 'next' into fix/run-workflow-from-forks

e42785e

slaveeks approved these changes Feb 26, 2024

View reviewed changes

gohabereg approved these changes Feb 28, 2024

View reviewed changes

neSpecc merged commit 7ff5faa into next Feb 28, 2024
6 checks passed

neSpecc deleted the fix/run-workflow-from-forks branch February 28, 2024 12:33

github-actions bot mentioned this pull request Feb 28, 2024

Bump version up to 2.30.0-rc.0 #2640

Merged

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Fix workflow not working properly when running from fork #2595

Fix workflow not working properly when running from fork #2595

GoldenJaden commented Jan 23, 2024 •

edited

Loading

Fix workflow not working properly when running from fork #2595

Fix workflow not working properly when running from fork #2595

Conversation

GoldenJaden commented Jan 23, 2024 • edited Loading

GoldenJaden commented Jan 23, 2024 •

edited

Loading