From 840357580344adab0559719a3fd5ac78364a0582 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Leroy=20R=C3=BCgemer?= <lruegeme@techfak.uni-bielefeld.de>
Date: Wed, 6 Mar 2024 15:49:37 +0100
Subject: [PATCH] fix ownership after checkout, see
 https://github.com/actions/checkout/issues/1049

---
 .github/workflows/ci.yml      | 8 ++++++++
 .github/workflows/release.yml | 7 +++++++
 2 files changed, 15 insertions(+)

diff --git a/.github/workflows/ci.yml b/.github/workflows/ci.yml
index 57a62880..9c5e0213 100644
--- a/.github/workflows/ci.yml
+++ b/.github/workflows/ci.yml
@@ -26,6 +26,13 @@ jobs:
 
     steps:
     - uses: actions/checkout@v4
+    
+    - name: Take ownership of the checkout directory (Git CVE-2022-24765)
+      run: chown --recursive --reference=/ .
+
+    - name: Allow for file ownership conflicts with Docker and GitHub Actions
+      run: git config --global --add safe.directory '*'
+
     - name: LaTeX compilation
       run:
         TERM=xterm make ${{ matrix.document }}
@@ -45,6 +52,7 @@ jobs:
     - uses: actions/checkout@v4
       with:
         ref: gh-pages
+  
     - name: Download organization
       uses: actions/download-artifact@v4
       with:
diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml
index fbc89e8a..11ee5437 100644
--- a/.github/workflows/release.yml
+++ b/.github/workflows/release.yml
@@ -23,6 +23,13 @@ jobs:
     container: texlive/texlive:TL2022-historic
     steps:
     - uses: actions/checkout@v4
+    
+    - name: Take ownership of the checkout directory (Git CVE-2022-24765)
+      run: chown --recursive --reference=/ .
+
+    - name: Allow for file ownership conflicts with Docker and GitHub Actions
+      run: git config --global --add safe.directory '*'
+
     - name: LaTeX compilation Organization
       run:
         TERM=xterm make organization