act_runner/run.sh at fd7c8580afb3a2aaa0278bcc25ed5d4c5c48886a

mirror of https://gitea.com/gitea/act_runner.git synced 2025-12-14 10:04:46 +00:00

Files

ChristopherHX fd7c8580af Prevent exposing GITEA_RUNNER_REGISTRATION_TOKEN to act (#188 )

You can currently expose the token to jobs even while using docker in docker

`-e GITEA_RUNNER_REGISTRATION_TOKEN` tells the docker client of act to read GITEA_RUNNER_REGISTRATION_TOKEN from the process and now it can be stolen.

Reviewed-on: https://gitea.com/gitea/act_runner/pulls/188
Reviewed-by: Jason Song <i@wolfogre.com>
Co-authored-by: ChristopherHX <christopherhx@noreply.gitea.io>
Co-committed-by: ChristopherHX <christopherhx@noreply.gitea.io>

2023-05-17 14:13:38 +08:00

1.3 KiB

Executable File

Raw Blame History

View Raw

1.3 KiB Executable File Raw Blame History

1.3 KiB

Executable File

Raw Blame History