actions/github-action-push-to-another-repository
1
0
Fork 0
mirror of https://github.com/cpina/github-action-push-to-another-repository.git synced 2025-12-07 05:07:15 -07:00
Code Issues Packages Projects Releases Wiki Activity

Fix unsafe repository error (#65)

Browse Source 
Mark the repository as safe.

It should be ok to do so in the action context because the vulnerability affects "multi-user shared machines" and this is a single-user Docker image. Details of why this is needed CVE-2022-24765: https://github.blog/2022-04-12-git-security-vulnerability-announced/

I will keep monitoring if there could be any problems and get in touch in you have more information.
This commit is contained in:
Carles Pina Estany
2022-04-13 10:17:12 +02:00
committed by GitHub
parent 483689a71c
commit ac0bb2c8f9
2 changed files with 9 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
Dockerfile
View File

@@ -1,6 +1,6 @@
FROM alpine:latest
RUN apk add --no-cache git
RUN apk add --no-cache --repository=http://dl-cdn.alpinelinux.org/alpine/edge/main git
COPY entrypoint.sh /entrypoint.sh