From a50130480680b04f53fb2b700b7961c1f87071f5 Mon Sep 17 00:00:00 2001
From: Toni500github <88878648+Toni500github@users.noreply.github.com>
Date: Sat, 21 Dec 2024 18:31:37 +0100
Subject: [PATCH] Update makefile.yml

---
 .github/workflows/makefile.yml | 10 ++++------
 1 file changed, 4 insertions(+), 6 deletions(-)

diff --git a/.github/workflows/makefile.yml b/.github/workflows/makefile.yml
index 26f3154..2cc3a4e 100644
--- a/.github/workflows/makefile.yml
+++ b/.github/workflows/makefile.yml
@@ -83,12 +83,10 @@ jobs:
     - name: Install the packages
       run: pacman -Syyu git sudo base-devel fakeroot pkgconf tree neofetch --noconfirm --needed
 
-    - name: Configure sudo and PAM
+    - name: Create a dedicated build user
       run: |
-        echo "nobody:x:65534:65534:nobody:/nonexistent:/usr/bin/nologin" >> /etc/passwd
-        echo "nobody:*:18905:0:99999:7:::" >> /etc/shadow
-        chmod 640 /etc/shadow
-        echo -e "account    required   pam_unix.so" >> /etc/pam.d/sudo
+        useradd -m -s /bin/bash builduser
+        echo "builduser ALL=(ALL) NOPASSWD: ALL" >> /etc/sudoers
     
     - name: get /etc/sudoers
       run: |
@@ -105,7 +103,7 @@ jobs:
         git clone https://aur.archlinux.org/customfetch-git.git
         chown -R nobody customfetch-git
         cd customfetch-git
-        sudo -u nobody makepkg -si --noconfirm
+        sudo -u builduser makepkg -si --noconfirm
 
     #- name: Setup SSH session
     #  uses: mxschmitt/action-tmate@v3