Skip to content

Update github action setup-go to version 1.1.3 #77

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 1 commit into from
Nov 20, 2020
Merged

Update github action setup-go to version 1.1.3 #77

merged 1 commit into from
Nov 20, 2020

Conversation

awgreene
Copy link
Member

@awgreene awgreene commented Nov 20, 2020
edited
Loading

Fixes a security vulnerability that allowed environment variables and path injection in workflows that log untrusted data to STDOUT, possibly resulting in environment variables being introducd or modified without the intention of the workflow operator.

Ref: https://github.blog/changelog/2020-10-01-github-actions-deprecating-set-env-and-add-path-commands/

@awgreene
Update github action setup-go to version 1.1.3
d766a36 
Fixes a security vulnerability that allowed environment variables and
path injection in workflows that log untrusted data to STDOUT, possibly
resulting in environment variables being introducd or modified without
the intention of the workflow operator.

Ref: https://github.blog/changelog/2020-10-01-github-actions-deprecating-set-env-and-add-path-commands/
@gallettilance
Copy link
Member

/lgtm

@openshift-ci-robot openshift-ci-robot added the lgtm Indicates that a PR is ready to be merged. label Nov 20, 2020
@openshift-ci-robot openshift-ci-robot removed the lgtm Indicates that a PR is ready to be merged. label Nov 20, 2020
@gallettilance
Copy link
Member

/lgtm

@openshift-ci-robot openshift-ci-robot added the lgtm Indicates that a PR is ready to be merged. label Nov 20, 2020
@awgreene awgreene changed the title Update github actions Update github action setup-go to version 1.1.3 Nov 20, 2020
@gallettilance gallettilance mentioned this pull request Nov 20, 2020
Merged
dinhxuanvu
dinhxuanvu approved these changes Nov 20, 2020
View reviewed changes
Copy link
Member

@dinhxuanvu dinhxuanvu left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

/lgtm

@awgreene awgreene merged commit 53968b3 into operator-framework:master Nov 20, 2020
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@dinhxuanvu dinhxuanvu dinhxuanvu approved these changes

@ecordell ecordell Awaiting requested review from ecordell

Assignees

@dinhxuanvu dinhxuanvu

@gallettilance gallettilance

Labels
lgtm Indicates that a PR is ready to be merged.
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
4 participants
@awgreene @gallettilance @dinhxuanvu @openshift-ci-robot