Closed ST-DDT closed 4 months ago
Thanks for opening your first issue here! Be sure to follow the issue template!
@ST-DDT: This issue is currently awaiting triage.
The triage/accepted label can be added by org members by writing /triage accepted in a comment.
@ST-DDT: There are no 'kind' label on this PR. You need a 'kind' label to generate the release note automatically.
/kind feature
/kind bug
/kind question
@ST-DDT: There are no area labels on this issue. Adding an appropriate label will greatly expedite the process for us. You can add as many area as you see fit. If you are unsure what to do you can ignore this!
/area ui-ux
/area semantics
/area translation
/area security
/kind bug /area security
This isn't an actual security bug, but a potential for that.
Hi, Thanks for pointing out the problem. This particular workflow have been temporarily removed for further inspection.
The current run-nothing example is safe, but running anything in there that uses the source code is dangerous as it uses elevated permissions. I'll recommend rewriting/removing the example or raising awareness by adding a comment.
https://github.com/SwaragThaikkandi/SMdRQA/blob/6ed1aa92ab32516c4a5f23ab254f6bc161c47b68/.github/workflows/label.yml#L27-L28 https://github.com/SwaragThaikkandi/SMdRQA/blob/6ed1aa92ab32516c4a5f23ab254f6bc161c47b68/.github/workflows/label.yml#L33-L34