-
Notifications
You must be signed in to change notification settings - Fork 12
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
CI: Code Review Failing in PR #38
Comments
Merged
https://securitylab.github.com/research/github-actions-preventing-pwn-requests/ TL;DR |
niklasdewally
added a commit
to niklasdewally/conjure-oxide
that referenced
this issue
Nov 4, 2023
ozgurakgun
added a commit
that referenced
this issue
Nov 4, 2023
CI Tweaks, Fix #38, and Single Cache
Merged
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Actions that run on code that lives on a fork of this repository (for example, pull requests) can only have a readonly token to the repository.
https://docs.github.com/en/actions/security-guides/automatic-token-authentication#permissions-for-the-github_token
This causes code coverage CI to fail.
This needs a more complex security model.
The text was updated successfully, but these errors were encountered: