Skip to content

Add a workflow that will trigger action scanner to ensure behavior is as expected #133

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
pdewilde wants to merge 2 commits into
base: main
Choose a base branch
from
Open

Add a workflow that will trigger action scanner to ensure behavior is as expected #133

pdewilde wants to merge 2 commits into from

Conversation

@pdewilde
Copy link
Contributor

@pdewilde pdewilde commented Nov 20, 2025
edited
Loading

This should show up as a PWN request to the codeql scanner is it's checking out head sha in pull_request_target and executing.

In practice, this will never actually cause anything bad due to the if false in the script. (I also intend to revert this change in the next PR).

I want to validate that the status check is not currently required, which requires me merging something that fails it.

@pdewilde pdewilde requested a review from a team as a code owner November 20, 2025 21:08
github-advanced-security[bot]
github-advanced-security bot found potential problems Nov 20, 2025
View reviewed changes
github-advanced-security[bot]
github-advanced-security bot found potential problems Nov 21, 2025
View reviewed changes
@pdewilde pdewilde enabled auto-merge (squash) November 21, 2025 01:33
@pdewilde pdewilde requested a review from Laptop765 November 21, 2025 19:12
Laptop765
Laptop765 reviewed Nov 21, 2025
View reviewed changes
Copy link

@Laptop765 Laptop765 left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Do you need sign off on this one or is it just for testing?

@pdewilde
Copy link
Contributor Author

pdewilde commented Nov 21, 2025

Do you need sign off on this one or is it just for testing?

I want to sign off to ensure it can be merged with failing status.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@Laptop765 Laptop765 Laptop765 left review comments

@verbanicm verbanicm Awaiting requested review from verbanicm verbanicm is a code owner automatically assigned from abcxyz/infrastructure-team

@RivocPX RivocPX Awaiting requested review from RivocPX RivocPX is a code owner automatically assigned from abcxyz/infrastructure-team

At least 1 approving review is required to merge this pull request.

Assignees

No one assigned

Labels

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@pdewilde @Laptop765