[wp-trac] [WordPress Trac] #52625: Test tool and unit test improvements for 5.8

WordPress Trac noreply at wordpress.org
Tue Mar 2 16:09:31 UTC 2021

#52625: Test tool and unit test improvements for 5.8
 Reporter:  desrosj                   |       Owner:  (none)
     Type:  task (blessed)            |      Status:  new
 Priority:  normal                    |   Milestone:  5.8
Component:  Build/Test Tools          |     Version:
 Severity:  normal                    |  Resolution:
 Keywords:  has-patch has-unit-tests  |     Focuses:

Comment (by desrosj):

 In [changeset:"50474" 50474]:
 #!CommitTicketReference repository="" revision="50474"
 Build/Test Tools: Pin the `welcome-action` to a specific commit SHA.

 Some GitHub Action scripts require additional permissions to perform the
 desired operations. This permission is usually given by passing a personal
 access token (PAT) to the action as an input.

 Because PATs grant access to sensitive information about the repository
 and actions with PATs become trusted actors, 3rd party actions should not
 be installed by specifying a major or minor version.

 Instead, specifying a full length commit SHA will use the 3rd party action
 as an immutable release, ensuring the workflows within the repository are
 not affected by upstream security problems should they occur.

 Props johnbillion.
 See #52625.

Ticket URL: <https://core.trac.wordpress.org/ticket/52625#comment:12>
WordPress Trac <https://core.trac.wordpress.org/>
WordPress publishing platform

More information about the wp-trac mailing list