jprdonnelly/docs
1
0
Fork 0
mirror of synced 2026-01-03 06:04:16 -05:00
Code Issues Projects Releases Wiki Activity
Files
2d71b90ac59cd5e6fc2252bc75509f2b5f1236f2
docs/data/reusables/github-actions/context-injection-warning.md
Martin Lopes c34031a583 Keep Actions docs up to date with security practices (#19076) 
* Update security-hardening-for-github-actions.md

Co-authored-by: Lucas Costi <lucascosti@users.noreply.github.com>
Co-authored-by: Jaroslav Lobačevski <jarlob@github.com>
2021-05-25 22:26:51 +10:00

6 lines
483 B
Markdown
Raw Blame History

{% warning %}
**Warning:** When creating workflows and actions, you should always consider whether your code might execute untrusted input from possible attackers. Certain contexts should be treated as untrusted input, as an attacker could insert their own malicious content. For more information, see "[Understanding the risk of script injections](/actions/learn-github-actions/security-hardening-for-github-actions#understanding-the-risk-of-script-injections)."
{% endwarning %}
Reference in New Issue View Git Blame Copy Permalink