#github-actions (2019-12)

Discussions related to GitHub Actions

2019-12-20

Erik Osterman (Cloud Posse) avatar
Erik Osterman (Cloud Posse)
Use GitHub actions at your own risk attachment image

Malicious code can be inserted into any GitHub action, even those which are tagged.

Pierre Humberdroz avatar
Pierre Humberdroz

it is the same with helm charts and others .. nothing new but still worth a read

Use GitHub actions at your own risk attachment image

Malicious code can be inserted into any GitHub action, even those which are tagged.

:--1:1
Erik Osterman (Cloud Posse) avatar
Erik Osterman (Cloud Posse)

Ya true

2019-12-19

Erik Osterman (Cloud Posse) avatar
Erik Osterman (Cloud Posse)
GitHub Actions: The Runner is now open sourced - The GitHub Blog attachment image

The GitHub Actions Runner is now open sourced. File issues and contribute to one of the most important components of GitHub Actions directly at: https://github.com/actions/runner The Runner is the application that runs a job from

Pierre Humberdroz avatar
Pierre Humberdroz

I wish they would just add approval gates.

:100:1
Erik Osterman (Cloud Posse) avatar
Erik Osterman (Cloud Posse)

Yes, agreed. I haven’t found the best way to do this. What I’ve seen so far is to use labels, but there’s no good way to restrict who can add labels if someone has write permission.

2019-12-04

jedineeper avatar
jedineeper
10:26:32 AM

@jedineeper has joined the channel

    keyboard_arrow_up