mirror of
https://github.com/actions/checkout.git
synced 2026-06-23 13:27:51 +08:00
Compare commits
2 Commits
| Author | SHA1 | Date | |
|---|---|---|---|
 dependabot[bot]
|
4e44f3c431 | ||
|
Aiqiao Yan
|
9c091bb21b |
@@ -44,7 +44,7 @@ jobs:
|
|||||||
fi
|
fi
|
||||||
|
|
||||||
# If dist/ was different than expected, upload the expected version as an artifact
|
# If dist/ was different than expected, upload the expected version as an artifact
|
||||||
- uses: actions/upload-artifact@v4
|
- uses: actions/upload-artifact@v7
|
||||||
if: ${{ failure() && steps.diff.conclusion == 'failure' }}
|
if: ${{ failure() && steps.diff.conclusion == 'failure' }}
|
||||||
with:
|
with:
|
||||||
name: dist
|
name: dist
|
||||||
|
|||||||
Vendored
+3
-3
@@ -42023,9 +42023,9 @@ function assertSafePrCheckout(input) {
|
|||||||
throw new Error(`Refusing to check out fork pull request code from a '${eventName}' workflow. ` +
|
throw new Error(`Refusing to check out fork pull request code from a '${eventName}' workflow. ` +
|
||||||
`This workflow runs with the base repository's GITHUB_TOKEN, secrets, default-branch ` +
|
`This workflow runs with the base repository's GITHUB_TOKEN, secrets, default-branch ` +
|
||||||
`cache scope, and runner access. Fetching and executing a fork's code in that trusted ` +
|
`cache scope, and runner access. Fetching and executing a fork's code in that trusted ` +
|
||||||
`context commonly leads to "pwn request" vulnerabilities. To opt in after reviewing ` +
|
`context commonly leads to "pwn request" vulnerabilities. To opt in, review the risks ` +
|
||||||
`the risks at https://gh.io/securely-using-pull_request_target, set ` +
|
`at https://gh.io/securely-using-pull_request_target and set 'allow-unsafe-pr-checkout: true' ` +
|
||||||
`'allow-unsafe-pr-checkout: true' on the actions/checkout step.`);
|
`on the actions/checkout step.`);
|
||||||
}
|
}
|
||||||
function pushIfSha(target, value) {
|
function pushIfSha(target, value) {
|
||||||
if (typeof value === 'string' && value.length > 0) {
|
if (typeof value === 'string' && value.length > 0) {
|
||||||
|
|||||||
@@ -75,9 +75,9 @@ export function assertSafePrCheckout(input: IUnsafePrCheckoutInput): void {
|
|||||||
`Refusing to check out fork pull request code from a '${eventName}' workflow. ` +
|
`Refusing to check out fork pull request code from a '${eventName}' workflow. ` +
|
||||||
`This workflow runs with the base repository's GITHUB_TOKEN, secrets, default-branch ` +
|
`This workflow runs with the base repository's GITHUB_TOKEN, secrets, default-branch ` +
|
||||||
`cache scope, and runner access. Fetching and executing a fork's code in that trusted ` +
|
`cache scope, and runner access. Fetching and executing a fork's code in that trusted ` +
|
||||||
`context commonly leads to "pwn request" vulnerabilities. To opt in after reviewing ` +
|
`context commonly leads to "pwn request" vulnerabilities. To opt in, review the risks ` +
|
||||||
`the risks at https://gh.io/securely-using-pull_request_target, set ` +
|
`at https://gh.io/securely-using-pull_request_target and set 'allow-unsafe-pr-checkout: true' ` +
|
||||||
`'allow-unsafe-pr-checkout: true' on the actions/checkout step.`
|
`on the actions/checkout step.`
|
||||||
)
|
)
|
||||||
}
|
}
|
||||||
|
|
||||||
|
|||||||
Reference in New Issue
Block a user