jiayuasu opened a new issue, #2645:
URL: https://github.com/apache/sedona/issues/2645
Greetings Sedona PMC!
The repository: sedona has been scanned.
Our analysis has found that the following GitHub Actions workflows need
remediation:
Pull Request Labeler: `pull_request_target` was found as a workflow
trigger. see
https://cwiki.apache.org/confluence/pages/viewpage.action?pageId=321719166#GitHubActionsSecurity-Buildstriggeredwithpull_request_target,
for more details
For more information on the GitHub Actions workflow policy, visit:
https://infra.apache.org/github-actions-policy.html
Please remediate the above as soon as possible.
If after after 60 days these problems are not addressed, we will turn off
builds
Cheers,
ASF Infrastructure
--
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.
To unsubscribe, e-mail: [email protected]
For queries about this service, please contact Infrastructure at:
[email protected]
