Add a policy for GitHub Actions workflow run approval configurations

ossf / allstar

GitHub App to set and enforce security policies

Apache License 2.0

1.25k stars 123 forks source link

Add a policy for GitHub Actions workflow run approval configurations #138

Open JonZeolla opened 2 years ago

JonZeolla commented 2 years ago

There are various modes which can be configured for approving GitHub Actions to run a given workflow, as described here and here. It would be good to be able to oversee this with an allstar policy, specific to public vs private forks.

jeffmendoza commented 2 years ago

Thanks for the suggestion! I think the first step would be to figure out what we would like the config to look like. Which settings Allstar would check and what the admin would setup as policy to allow or disallow.