Ma77Ball opened a new issue, #4279: URL: https://github.com/apache/texera/issues/4279
### Task Summary Forked PRs can execute arbitrary code in CI by modifying the build workflow file, since GitHub Actions runs the modified workflow on the fork's branch. This gives external contributors potential access to repository secrets and the CI environment without any maintainer review. The current build workflow has no protection against this — any fork PR that modifies .github/workflows/github-action-build.yml will run the modified workflow immediately. This creates two problems: Security risk: A malicious or accidental workflow change from a fork could expose repository secrets or compromise the CI environment without any committer review. Inefficiency: Since there is currently no automated trust mechanism, contributors constantly have to wait for a committer to manually trigger CI runs on their PRs, creating unnecessary back-and-forth and slowing down both contributors and committers. ### Priority P2 – Medium ### Task Type - [ ] Code Implementation - [ ] Documentation - [ ] Refactor / Cleanup - [ ] Testing / QA - [x] DevOps / Deployment -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: [email protected] For queries about this service, please contact Infrastructure at: [email protected]
