mirror of
https://code.forgejo.org/actions/checkout.git
synced 2026-07-03 01:56:09 +00:00
update urls
This commit is contained in:
parent
c2edb9a740
commit
678aa28ba1
4 changed files with 16 additions and 8 deletions
|
|
@ -101,8 +101,11 @@ inputs:
|
|||
allow-unsafe-pr-checkout:
|
||||
description: >
|
||||
Required to check out fork pull request code from a workflow triggered by
|
||||
`pull_request_target` or `workflow_run`. See [Pwn Requests](todo:need-link)
|
||||
for the risks. Set to `true` only after reviewing the risks.
|
||||
`pull_request_target` or `workflow_run`. These workflows run with the
|
||||
base repository's GITHUB_TOKEN, secrets, default-branch cache scope, and
|
||||
runner access; fetching a fork's code in that trusted context is a
|
||||
"pwn request" supply-chain attack pattern. Set to `true` only after
|
||||
reviewing the risks at https://gh.io/allow-unsafe-pr-checkout.
|
||||
default: false
|
||||
outputs:
|
||||
ref:
|
||||
|
|
|
|||
Loading…
Add table
Add a link
Reference in a new issue