actions/checkout
1
0
Fork 0
mirror of https://github.com/actions/checkout.git synced 2026-06-18 00:41:18 +08:00
Code Issues Packages Projects Releases Wiki Activity

update error wording

Browse Source
This commit is contained in:
Aiqiao Yan
2026-06-17 16:33:31 +00:00
parent 1044a6dea9
commit 98c23a5db6
2 changed files with 6 additions and 6 deletions
Download Patch File Download Diff File Expand all files Collapse all files

6
dist/index.js vendored
View File

@@ -42023,9 +42023,9 @@ function assertSafePrCheckout(input) {
throw new Error(`Refusing to check out fork pull request code from a '${eventName}' workflow. ` + throw new Error(`Refusing to check out fork pull request code from a '${eventName}' workflow. ` +
`This workflow runs with the base repository's GITHUB_TOKEN, secrets, default-branch ` + `This workflow runs with the base repository's GITHUB_TOKEN, secrets, default-branch ` +
`cache scope, and runner access. Fetching and executing a fork's code in that trusted ` + `cache scope, and runner access. Fetching and executing a fork's code in that trusted ` +
`context commonly leads to "pwn request" vulnerabilities. To opt in after reviewing ` + `context commonly leads to "pwn request" vulnerabilities. To opt in, review the risks ` +
`the risks at https://gh.io/securely-using-pull_request_target, set ` + `at https://gh.io/securely-using-pull_request_target and set 'allow-unsafe-pr-checkout: true' ` +
`'allow-unsafe-pr-checkout: true' on the actions/checkout step.`); `on the actions/checkout step.`);
} }
function pushIfSha(target, value) { function pushIfSha(target, value) {
if (typeof value === 'string' && value.length > 0) { if (typeof value === 'string' && value.length > 0) {

6
src/unsafe-pr-checkout-helper.ts
View File

@@ -75,9 +75,9 @@ export function assertSafePrCheckout(input: IUnsafePrCheckoutInput): void {
`Refusing to check out fork pull request code from a '${eventName}' workflow. ` + `Refusing to check out fork pull request code from a '${eventName}' workflow. ` +
`This workflow runs with the base repository's GITHUB_TOKEN, secrets, default-branch ` + `This workflow runs with the base repository's GITHUB_TOKEN, secrets, default-branch ` +
`cache scope, and runner access. Fetching and executing a fork's code in that trusted ` + `cache scope, and runner access. Fetching and executing a fork's code in that trusted ` +
`context commonly leads to "pwn request" vulnerabilities. To opt in after reviewing ` + `context commonly leads to "pwn request" vulnerabilities. To opt in, review the risks ` +
`the risks at https://gh.io/securely-using-pull_request_target, set ` + `at https://gh.io/securely-using-pull_request_target and set 'allow-unsafe-pr-checkout: true' ` +
`'allow-unsafe-pr-checkout: true' on the actions/checkout step.` `on the actions/checkout step.`
) )
} }