[wp-trac] [WordPress Trac] #52625: Test tool and unit test improvements for 5.8
WordPress Trac
noreply at wordpress.org
Tue Mar 2 16:09:31 UTC 2021
#52625: Test tool and unit test improvements for 5.8
--------------------------------------+---------------------
Reporter: desrosj | Owner: (none)
Type: task (blessed) | Status: new
Priority: normal | Milestone: 5.8
Component: Build/Test Tools | Version:
Severity: normal | Resolution:
Keywords: has-patch has-unit-tests | Focuses:
--------------------------------------+---------------------
Comment (by desrosj):
In [changeset:"50474" 50474]:
{{{
#!CommitTicketReference repository="" revision="50474"
Build/Test Tools: Pin the `welcome-action` to a specific commit SHA.
Some GitHub Action scripts require additional permissions to perform the
desired operations. This permission is usually given by passing a personal
access token (PAT) to the action as an input.
Because PATs grant access to sensitive information about the repository
and actions with PATs become trusted actors, 3rd party actions should not
be installed by specifying a major or minor version.
Instead, specifying a full length commit SHA will use the 3rd party action
as an immutable release, ensuring the workflows within the repository are
not affected by upstream security problems should they occur.
Props johnbillion.
See #52625.
}}}
--
Ticket URL: <https://core.trac.wordpress.org/ticket/52625#comment:12>
WordPress Trac <https://core.trac.wordpress.org/>
WordPress publishing platform
More information about the wp-trac
mailing list