From c5de4092cc056b76e2d8857477fbfc78469c43f4 Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Leroy=20R=C3=BCgemer?= Date: Wed, 6 Mar 2024 15:49:37 +0100 Subject: [PATCH] fix ownership after checkout, see https://github.com/actions/checkout/issues/1049 --- .github/workflows/ci.yml | 8 ++++++++ .github/workflows/release.yml | 7 +++++++ 2 files changed, 15 insertions(+) diff --git a/.github/workflows/ci.yml b/.github/workflows/ci.yml index 57a62880..9c5e0213 100644 --- a/.github/workflows/ci.yml +++ b/.github/workflows/ci.yml @@ -26,6 +26,13 @@ jobs: steps: - uses: actions/checkout@v4 + + - name: Take ownership of the checkout directory (Git CVE-2022-24765) + run: chown --recursive --reference=/ . + + - name: Allow for file ownership conflicts with Docker and GitHub Actions + run: git config --global --add safe.directory '*' + - name: LaTeX compilation run: TERM=xterm make ${{ matrix.document }} @@ -45,6 +52,7 @@ jobs: - uses: actions/checkout@v4 with: ref: gh-pages + - name: Download organization uses: actions/download-artifact@v4 with: diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml index c357f7b9..ca294a23 100644 --- a/.github/workflows/release.yml +++ b/.github/workflows/release.yml @@ -23,6 +23,13 @@ jobs: container: texlive/texlive:TL2022-historic steps: - uses: actions/checkout@v4 + + - name: Take ownership of the checkout directory (Git CVE-2022-24765) + run: chown --recursive --reference=/ . + + - name: Allow for file ownership conflicts with Docker and GitHub Actions + run: git config --global --add safe.directory '*' + - name: LaTeX compilation Organization run: TERM=xterm make organization