Closed testersen closed 1 year ago
@theztefan Would you know?
Is it also possible to allow an action like this?
- OurPublicSlug/abc
Without having to provide the version? Or
OurPublicSlug/abc@*
(at star) to allow all?
@j4m350n, yes that is possible, and as you pointed out it needs to be OurPublicSlug/abc@*
to work for all versions.
Only patterns documented under https://docs.github.com/en/enterprise-cloud@latest/admin/policies/enforcing-policies-for-your-enterprise/enforcing-policies-for-github-actions-in-your-enterprise#allowing-select-actions-and-reusable-workflows-to-run are possible.
Hey @j4m350n! As @stoe pointed out, technically, the feature (and therefore this Action) does allow *
wildcard character which makes your request possible. Reference to wildcard matching
That being said, you would still want to check in and confirm your company policy allows this.
Thanks @stoe, this helps out! <3
@theztefan The actions I'd like to do this with is our own, but located in a different organization that is publicly available. I 100% agree with you that wildcards is a security risk for actions not owned by ourselves :)
Thanks for the quick replies!
Hello,
I work in Telenor and we are using this action. I am wondering if it is possible to allow an action with any version.
I.e.
Our
github-actions-allow-list.yml
looks like:Is it also possible to allow an action like this?
Without having to provide the version? Or
OurPublicSlug/abc@*
(at star) to allow all?Thanks, James.