summaryrefslogtreecommitdiff
diff options
context:
space:
mode:
authorMassimiliano Culpo <massimiliano.culpo@gmail.com>2022-05-09 11:11:03 +0200
committerMassimiliano Culpo <massimiliano.culpo@gmail.com>2022-07-14 16:47:26 +0200
commit96535dc39f2751824eca0391a34518587e19a785 (patch)
tree71c8c4b6827ea6c31fdd4e2bb8065b2d698cd757
parentb74b175673b577afe80b69a21835ed00f95a8bc1 (diff)
downloadspack-96535dc39f2751824eca0391a34518587e19a785.tar.gz
spack-96535dc39f2751824eca0391a34518587e19a785.tar.bz2
spack-96535dc39f2751824eca0391a34518587e19a785.tar.xz
spack-96535dc39f2751824eca0391a34518587e19a785.zip
CI: fix bootstrapping on Fedora (#30559)
Fedora updated git, so we need to apply, again, the workaround for CVE-2022-24765
Diffstat
-rw-r--r--.github/workflows/bootstrap.yml8
1 files changed, 7 insertions, 1 deletions
diff --git a/.github/workflows/bootstrap.yml b/.github/workflows/bootstrap.yml
index 493295b624..bcea53c7c7 100644
--- a/.github/workflows/bootstrap.yml
+++ b/.github/workflows/bootstrap.yml
@@ -29,7 +29,13 @@ jobs:
bzip2 curl file gcc-c++ gcc gcc-gfortran git gnupg2 gzip \
make patch unzip which xz python3 python3-devel tree \
cmake bison bison-devel libstdc++-static
- - uses: actions/checkout@ec3a7ce113134d7a93b817d10a8272cb61118579 # @v2
+ - name: Work around CVE-2022-24765
+ run: |
+ # See:
+ # - https://github.blog/2022-04-12-git-security-vulnerability-announced/
+ # - https://github.com/actions/checkout/issues/760
+ git config --global --add safe.directory /__w/spack/spack
+ - uses: actions/checkout@2541b1294d2704b0964813337f33b291d3f8596b # @v2
- name: Setup repo and non-root user
run: |
git --version
generated by cgit v1.2.3-60-g2f50 (git 2.42.0) at 2024-06-08 16:40:39 +0000