artifact: git needs more files for private repositories #16495

shoenig · 2023-03-14T20:01:40Z

This PR fixes artifact downloading so that git may work when cloning from
private repositories. It needs

file read on /etc/passwd
dir read on /root/.ssh
file write on /root/.ssh/known_hosts

Add these rules to the landlock rules for the artifact sandbox.

This PR fixes artifact downloading so that git may work when cloning from private repositories. It needs - file read on /etc/passwd - dir read on /root/.ssh - file write on /root/.ssh/known_hosts Add these rules to the landlock rules for the artifact sandbox.

shoenig changed the title ~~landlock: git needs more files for private repositories~~ artifact: git needs more files for private repositories Mar 14, 2023

shoenig force-pushed the landlock-git-passwd branch from 9793922 to 37c798b Compare March 14, 2023 20:07

vercel bot deployed to Preview – nomad-storybook-and-ui March 14, 2023 20:11 View deployment

shoenig force-pushed the landlock-git-passwd branch from 37c798b to 2416349 Compare March 15, 2023 14:06

vercel bot deployed to Preview – nomad-storybook-and-ui March 15, 2023 14:11 View deployment

vercel bot deployed to Preview – nomad-storybook-and-ui March 15, 2023 15:06 View deployment

shoenig force-pushed the landlock-git-passwd branch from a98fe7f to 2416349 Compare March 15, 2023 15:07

shoenig closed this Mar 15, 2023

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

artifact: git needs more files for private repositories #16495

artifact: git needs more files for private repositories #16495

shoenig commented Mar 14, 2023 •

edited

Loading

artifact: git needs more files for private repositories #16495

artifact: git needs more files for private repositories #16495

Conversation

shoenig commented Mar 14, 2023 • edited Loading

shoenig commented Mar 14, 2023 •

edited

Loading