From ce9a8cb8ca913ad31123ebcfb3ce88061fe7108e Mon Sep 17 00:00:00 2001 From: Wagner Santos <7467450+wagoid@users.noreply.github.com> Date: Sat, 7 May 2022 06:23:46 -0300 Subject: [PATCH] fix: set workspace directory as safe in the entrypoint `actions/checkout` already fixed the issue on their side in [v3.0.1](https://github.com/actions/checkout/releases/tag/v3.0.1). But since this is a container action, it can be run with another uid than the one from `actions/checkout` and therefore we need to add the `safe.directory` config again. Another way of fixing this would be to make this action run with the same uid as the github runner, but as mentioned [here](https://github.com/actions/checkout/issues/760#issuecomment-1098135955) we're not sure whether the `1000` uid of the runner is reliable. The different `uid` issue seems more like a Github Actions ecosystem problem, maybe they'll take care of it later. --- README.md | 4 ++-- entrypoint.sh | 4 ++++ 2 files changed, 6 insertions(+), 2 deletions(-) diff --git a/README.md b/README.md index a050d05..a564c04 100644 --- a/README.md +++ b/README.md @@ -14,7 +14,7 @@ jobs: commitlint: runs-on: ubuntu-latest steps: - - uses: actions/checkout@v2 + - uses: actions/checkout@v3 with: fetch-depth: 0 - uses: wagoid/commitlint-github-action@v4 @@ -134,7 +134,7 @@ jobs: commitlint: runs-on: ubuntu-latest steps: - - uses: actions/checkout@v2 + - uses: actions/checkout@v3 with: fetch-depth: 0 - uses: actions/setup-node@v2 diff --git a/entrypoint.sh b/entrypoint.sh index a80ce64..e21674f 100755 --- a/entrypoint.sh +++ b/entrypoint.sh @@ -8,4 +8,8 @@ else export NODE_PATH=$NODE_PATH:/node_modules fi +# Since actions/checkout can be setup with a different user ID, we need to set the workspace as safe inside this action +# Info about the vunlerability: https://github.blog/2022-04-12-git-security-vulnerability-announced/ +git config --global --add safe.directory "$GITHUB_WORKSPACE" + node /run.js