]> git-server-git.apps.pok.os.sepia.ceph.com Git - ceph.git/commit
projects / ceph.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: fc32129) | patch
.github: mitigate possible "hackerbot-claw" exploit 67658/head
authorPatrick Donnelly <pdonnell@ibm.com>
Wed, 4 Mar 2026 21:21:31 +0000 (16:21 -0500)
committerPatrick Donnelly <pdonnell@ibm.com>
Wed, 4 Mar 2026 21:25:25 +0000 (16:25 -0500)
commit25ee0967e502133328e0e109172da2adbc1ac4dd
treeedb515cfe2eb20e795929c88e2ea22270ac17deftree | snapshot
parentfc321295b7feb34f382e3424b37cb439c1d52056commit | diff
.github: mitigate possible "hackerbot-claw" exploit

There's no reason to believe this script is actually vulnerable but
now it's best practice to avoid using pull_request_target.

Signed-off-by: Patrick Donnelly <pdonnell@ibm.com>
.github/workflows/qa-symlink.yml diff | blob | history
Unnamed repository; edit this file 'description' to name the repository.