+1, agree with the "only require approval first time" policy. It will prevent the abuse of GitHub actions.
On Fri, Mar 31, 2023 at 4:12 PM nuoyan <nuo...@apache.org> wrote: > > Hi, Communtity > > I am glad to supervise, check and prevent abuse of GitHub Actions for shenyu > > hefengen <hefen...@apache.org> 于2023年3月31日周五 16:08写道: > > > HI,Communtity > > > > > > I am glad to supervise, check the github action for shenyu, the first > > contribution action will inprove contributor efficiency. > > > > > > > > > > > > > > > > > > > > > > -- > > > > Best Regards! > > > > > > Apache ShenYu > > > > > > > > > > > > At 2023-03-31 15:45:00, "Zhang Yonglun" <zhangyong...@apache.org> wrote: > > >Hi, > > > > > >Per the new GitHub Actions policy [1], I am writing to start a > > >discussion regarding the use of GitHub Actions in our project, > > >specifically with the "only require approval first time" feature. This > > >feature will allow our contributors to use GitHub Actions without > > >requiring further approval after their first pull request is approved. > > > > > >I understand that there may be security concerns associated with this > > >configuration, but I believe that it will increase our project's > > >efficiency and help us better manage our workflows. However, I also > > >acknowledge that the community's input and feedback on this matter are > > >crucial, and I would like to hear everyone's thoughts on this. Please > > >share your opinions. > > > > > >[1] https://infra.apache.org/github-actions-policy.html > > > > > >-- > > > > > >Zhang Yonglun > > >Apache ShenYu & ShardingSphere > >
