codecharta icon indicating copy to clipboard operation
codecharta copied to clipboard
verified publisher icon MaibornWolff

PRs based on branches in repository forks do not run GH-Actions

Open phanlezz opened this issue 2 years ago • 2 comments

Bug: PRs based on branches in repository forks do not run GH-Actions

Expected Behavior

GIVEN A branch from someone who want to participate in this repository

WHEN opening a PR on said branch (on a fork)

THEN the applicable GH-actions like test.yml asks for a maintainer to be started or start themselves if possible.

Actual Behavior

They don't start and are forever stuck in "Waiting for status to be reported",

Steps to Reproduce the Problem

  1. Create fork
  2. Create branch
  3. Open PR

Specifications

It must be checked whether this behavior is still occurring.

phanlezz avatar Feb 21 '24 11:02 phanlezz

It's actually a security aspect by github. Github actions were for example misused to do bitcoin mining and people tried to steal secrets from the github actions.

BridgeAR avatar Feb 21 '24 13:02 BridgeAR

It's actually a security aspect by github. Github actions were for example misused to do bitcoin mining and people tried to steal secrets from the github actions.

I understand that it is supposed to not run on auto, but shouldn't there be a button where maintainers could authorize those runs? The last time someone tried to open a PR, the button or question did not appear.

phanlezz avatar Feb 21 '24 13:02 phanlezz

Would be great, but we currently dont need it as there aren't many people supporting CC from outside of our organization anyway. 👍

ChristianHuehn avatar Jun 03 '24 08:06 ChristianHuehn