summaryrefslogtreecommitdiff
path: root/.github
diff options
context:
space:
mode:
authorMassimiliano Culpo <massimiliano.culpo@gmail.com>2022-05-09 11:11:03 +0200
committerGitHub <noreply@github.com>2022-05-09 09:11:03 +0000
commit104d60887f550e330e6a0f6a0af0c72016080edc (patch)
tree238860aa4412b4fd4b6261688fdc8266878557ee /.github
parent1bde91735b69331bd296249d35d3b7ce1358c776 (diff)
downloadspack-104d60887f550e330e6a0f6a0af0c72016080edc.tar.gz
spack-104d60887f550e330e6a0f6a0af0c72016080edc.tar.bz2
spack-104d60887f550e330e6a0f6a0af0c72016080edc.tar.xz
spack-104d60887f550e330e6a0f6a0af0c72016080edc.zip
CI: fix bootstrapping on Fedora (#30559)
Fedora updated git, so we need to apply, again, the workaround for CVE-2022-24765
Diffstat (limited to '.github')
-rw-r--r--.github/workflows/bootstrap.yml6
1 files changed, 6 insertions, 0 deletions
diff --git a/.github/workflows/bootstrap.yml b/.github/workflows/bootstrap.yml
index 816940136a..b0885e1ab3 100644
--- a/.github/workflows/bootstrap.yml
+++ b/.github/workflows/bootstrap.yml
@@ -31,6 +31,12 @@ jobs:
bzip2 curl file gcc-c++ gcc gcc-gfortran git gnupg2 gzip \
make patch unzip which xz python3 python3-devel tree \
cmake bison bison-devel libstdc++-static
+ - name: Work around CVE-2022-24765
+ run: |
+ # See:
+ # - https://github.blog/2022-04-12-git-security-vulnerability-announced/
+ # - https://github.com/actions/checkout/issues/760
+ git config --global --add safe.directory /__w/spack/spack
- uses: actions/checkout@2541b1294d2704b0964813337f33b291d3f8596b # @v2
- name: Setup repo and non-root user
run: |