database/doris
2
0
Fork 0
Code Issues Pull Requests Actions 3 Packages Projects Releases Wiki Activity
Files
f4cbbe64291ddbf06c9759b9a6ee0aef309034d0
doris/.github/workflows
History
Adonis Ling f4cbbe6429 [chore](workflow) Fix security issues with pull_request_target (#26525) 
In the workflow Code Checks, we use the event pull_request_target which has write permission to enable the actions to comment on our PRs. We should be careful with the write permission and must forbid from running any user code. The previous PR #24761 tried its best to achieve this goal.
However, there is a scenario lacking of consideration (See #26494). #26494 attacks the workflow by git submodule way. This PR fixes this scenario by checkouting the external action explicitly in the workflow.
2023-11-08 11:23:13 +08:00
..
labeler
[github](action) re-add "Add Scope Labeler" and add new label "meta-change" (#25907)
2023-10-26 09:17:22 +08:00
approve-label-trigger.yml
[Community] Fix PR labeling github action workflow (#6279)
2021-07-25 22:22:09 +08:00
approve-label.yml
[Community] Fix PR labeling github action workflow (#6279)
2021-07-25 22:22:09 +08:00
auto_trigger_teamcity.yml
[fix](trigger) fix pipeline bug that does not trigger Doris_Performance_Clickbench_ClickbenchNew (#25827)
2023-10-24 16:28:01 +08:00
be-ut-mac.yml
[chore](build) Fix compilation errors reported by GCC-13 (#25439)
2023-10-15 07:57:36 -05:00
build-extension.yml
[build](extension) Update build-extension.yml (#25721)
2023-10-21 16:52:55 +08:00
build-thirdparty.yml
[chore](workflow) Increase the build space for building third-party libraries (#22322)
2023-07-28 11:27:51 +08:00
checkstyle.yaml
[Revert](code-style) revert FE code-format #25033 and #26488 (#26505)
2023-11-07 16:37:24 +08:00
clang-format.yml
[chore](workflow) Fix security issues with pull_request_target (#26525)
2023-11-08 11:23:13 +08:00
code-checks.yml
[chore](workflow) Fix security issues with pull_request_target (#26525)
2023-11-08 11:23:13 +08:00
deadlink-check.yml
[Improve](CI)Modify Deadline-check trigger mode, and add maven cache for Sonarcheck (#23069)
2023-08-16 22:31:50 +08:00
license-eyes.yml
[chore](workflow) Fix security issues with pull_request_target (#26525)
2023-11-08 11:23:13 +08:00
pr-approve-status.yml
[Fix](CI)After Approve, even comments should be considered as mergeable (#21264)
2023-06-28 00:18:25 +08:00
scope-label.yml
[github](action) re-add "Add Scope Labeler" and add new label "meta-change" (#25907)
2023-10-26 09:17:22 +08:00
sonarcloud.yml
[Chore](checks) move sonar config file to be(#24712)
2023-09-21 15:16:26 +08:00
stale.yml
[enhancement](community): add ci for close outdated PR. (#11088)
2022-07-22 17:00:17 +08:00
title-checker.yml
[improve](ci): allow blank, -, _ (#11349)
2022-07-31 09:51:02 +08:00