Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

fix(gha): prevent runner from traversing entire repository #576

Closed
wants to merge 1 commit into from

Conversation

fredrikaverpil
Copy link
Member

@fredrikaverpil fredrikaverpil commented Aug 22, 2024

Why this change?

We have seen issues where the runner does not have permissions to enter a certain directory. Then the post-step of the cache will fail in GHA. Related issue: actions/checkout#760

The reason for this is that a container is running in GHA and uses root permissions when writing files into GHA.

What was done?

Do not look for go.sum files throughout the entire repository. Just search one folder deeper than the root.

Notes, side-effects etc

We have seen issues where the runner does not have permissions to enter
a certain directory. Then the post-step of the cache will fail in GHA.
@fredrikaverpil fredrikaverpil changed the title fix(gha): prevent runnder from traversing entire repository fix(gha): prevent runner from traversing entire repository Aug 22, 2024
@fredrikaverpil
Copy link
Member Author

I'm going to put this into draft, as I'm not sure if this is the best solution to the problem at hand.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
None yet
Projects
None yet
Development

Successfully merging this pull request may close these issues.

2 participants