Skip to content

HDDS-15719. Add check for allowed action usage in workflows#10641

Open
adoroszlai wants to merge 3 commits into
apache:masterfrom
adoroszlai:HDDS-15719
Open

HDDS-15719. Add check for allowed action usage in workflows#10641
adoroszlai wants to merge 3 commits into
apache:masterfrom
adoroszlai:HDDS-15719

Conversation

@adoroszlai

Copy link
Copy Markdown
Contributor

What changes were proposed in this pull request?

GitHub workflows may fail silently when using any actions not allowed by ASF Infra. See apache/infrastructure-actions#574 for details.

This change add a new check that verifies action usage in workflows. See https://github.com/apache/infrastructure-actions/blob/main/allowlist-check/README.md

https://issues.apache.org/jira/browse/HDDS-15719

How was this patch tested?

asf-allowlist-check: https://github.com/adoroszlai/ozone/actions/runs/28457560831/job/84336430810#step:3:41
zizmor: https://github.com/adoroszlai/ozone/actions/runs/28457560907/job/84336430775#step:3:117

@adoroszlai adoroszlai self-assigned this Jun 30, 2026
@adoroszlai adoroszlai added the CI label Jun 30, 2026
Comment thread .github/workflows/asf-allowlist-check.yaml Fixed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

Projects

None yet

Development

Successfully merging this pull request may close these issues.

2 participants