Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Use pull_request_target for e2e tests. #7

Merged
merged 1 commit into from
May 12, 2022
Merged

Use pull_request_target for e2e tests. #7

merged 1 commit into from
May 12, 2022

Conversation

wlynch
Copy link
Member

@wlynch wlynch commented May 12, 2022

Summary

pull_request doesn't allow for usage of OIDC tokens, so the test
sign+verify workflow can't run. Although this is generally discouraged
by GitHub (see
https://securitylab.github.com/research/github-actions-preventing-pwn-requests/),
this is useful as an e2e testing tool for testing.

Signed-off-by: Billy Lynch billy@chainguard.dev

Ticket Link

n/a

Release Note

None

@wlynch wlynch requested a review from imjasonh May 12, 2022 20:16
nsmith5
nsmith5 approved these changes May 12, 2022
View reviewed changes
Copy link
Contributor

@nsmith5 nsmith5 left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Noice

imjasonh
imjasonh reviewed May 12, 2022
View reviewed changes
.github/workflows/e2e.yaml Outdated Show resolved Hide resolved
.github/workflows/go.yml Show resolved Hide resolved
@wlynch
Use pull_request_target for e2e tests.
c2c4cec 
pull_request doesn't allow for usage of OIDC tokens, so the test
sign+verify workflow can't run. Although this is generally discouraged
by GitHub (see
https://securitylab.github.com/research/github-actions-preventing-pwn-requests/),
this is useful as an e2e testing tool for testing.

Signed-off-by: Billy Lynch <billy@chainguard.dev>
@wlynch wlynch merged commit 74147bb into sigstore:main May 12, 2022
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@imjasonh imjasonh imjasonh approved these changes

@nsmith5 nsmith5 nsmith5 approved these changes

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
3 participants
@wlynch @imjasonh @nsmith5