Skip to content

fix(workflows): disable cache in privileged workflows #39547

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 1 commit into from
May 16, 2025
Merged

fix(workflows): disable cache in privileged workflows #39547

merged 1 commit into from
May 16, 2025
+0 −2

Conversation

caugner
Copy link
Contributor

@caugner caugner commented May 16, 2025

Description

Disables the cache (used by actions/setup-node) in privileged workflows.

Motivation

Limits the impact of less-privileged workflows that may be vulnerable to code injection.

Additional details

Related issues and pull requests
@caugner caugner requested a review from bsmth May 16, 2025 11:41
@caugner caugner requested a review from a team as a code owner May 16, 2025 11:41
@github-actions github-actions bot added system [PR only] Infrastructure and configuration for the project size/xs [PR only] 0-5 LoC changed labels May 16, 2025
bsmth
bsmth approved these changes May 16, 2025
View reviewed changes
Copy link
Member

@bsmth bsmth left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

tnx
@caugner caugner merged commit a86850f into main May 16, 2025
11 checks passed
@caugner caugner deleted the MP-1895-disable-caching-in-privileged-workflows branch May 16, 2025 11:46
This was referenced May 16, 2025
Merged
Merged
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
size/xs [PR only] 0-5 LoC changed system [PR only] Infrastructure and configuration for the project
2 participants
@caugner @bsmth