Open DerekRoberts opened 1 week ago
From hardening issue - use actions instead of inline scripts. We make lots of calls to oc that could be exploited. An action would let us maintain the correct oc version and add checks, like blocking forks.
https://docs.github.com/en/actions/security-for-github-actions/security-guides/security-hardening-for-github-actions#good-practices-for-mitigating-script-injection-attacks
From hardening issue - use actions instead of inline scripts. We make lots of calls to oc that could be exploited. An action would let us maintain the correct oc version and add checks, like blocking forks.
https://docs.github.com/en/actions/security-for-github-actions/security-guides/security-hardening-for-github-actions#good-practices-for-mitigating-script-injection-attacks