Problem
repo-analysis.yml checks out the dispatched inputs.ref and executes the
analysis documents from it with DEEPINFRA_TOKEN and an issues: write
token. Any write-access account can point it at an unreviewed branch and run
arbitrary document code with those credentials.
Proposal
Either execute the analysis documents from main (checkout the target ref
only as data), or gate the workflow behind an environment with required
reviewers, mirroring npm-publish.
Problem
repo-analysis.ymlchecks out the dispatchedinputs.refand executes theanalysis documents from it with
DEEPINFRA_TOKENand anissues: writetoken. Any write-access account can point it at an unreviewed branch and run
arbitrary document code with those credentials.
Proposal
Either execute the analysis documents from
main(checkout the target refonly as data), or gate the workflow behind an environment with required
reviewers, mirroring
npm-publish.