Integration tests that include use of a PostgreSQL server fails when the PR is based on a fork #567
Labels
status/draft
Status: When you create an issue before you have enough info to properly describe the issue.
Comments
SandGrainOne
added
the
status/draft
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Description
A lot of the tests we have in Storage doesn't run successfully when the pull requests comes from a fork. We need to find a good and safe way of setting up a PostgreSQL server that can be used.
Additional Information
Build and analysis of pull requests that comes from a fork needs to run by different agents and with limited access to our resources. Github workflows can be a popular attack vector against our systems. Workflows running in a pull request will be using the workflow definition defined in the source branch. An attacker could use this to gain access to our systems.
Tasks
Acceptance Criterias
The text was updated successfully, but these errors were encountered: