security: restrict secrets inheritance in PR workflows · posit-dev/publisher@db8e245

SecretsUsedInArgOrEnv: Do not use ARG or ENV instructions for sensitive data (ARG "GH_DOWNLOAD_TOKEN") More info: https://docs.docker.com/go/dockerfile/rule/secrets-used-in-arg-or-env/

Sensitive data should not be used in the ARG or ENV commands: test/e2e/Dockerfile.base#L113

SecretsUsedInArgOrEnv: Do not use ARG or ENV instructions for sensitive data (ARG "GH_DOWNLOAD_TOKEN") More info: https://docs.docker.com/go/dockerfile/rule/secrets-used-in-arg-or-env/

e2e / e2e (2023.03.0): test/e2e/tests/workbench/positron/deployments.cy.js#L53

Unexpected pending mocha test

e2e / e2e (2023.03.0): test/e2e/tests/deployments.cy.js#L61

Unexpected pending mocha test

Sensitive data should not be used in the ARG or ENV commands: test/e2e/Dockerfile.base#L123

SecretsUsedInArgOrEnv: Do not use ARG or ENV instructions for sensitive data (ARG "GH_DOWNLOAD_TOKEN") More info: https://docs.docker.com/go/dockerfile/rule/secrets-used-in-arg-or-env/

Sensitive data should not be used in the ARG or ENV commands: test/e2e/Dockerfile.base#L113

SecretsUsedInArgOrEnv: Do not use ARG or ENV instructions for sensitive data (ARG "GH_DOWNLOAD_TOKEN") More info: https://docs.docker.com/go/dockerfile/rule/secrets-used-in-arg-or-env/

e2e / e2e (2025.03.0): test/e2e/tests/workbench/positron/deployments.cy.js#L53

Unexpected pending mocha test

e2e / e2e (2025.03.0): test/e2e/tests/deployments.cy.js#L61

Unexpected pending mocha test

Sensitive data should not be used in the ARG or ENV commands: test/e2e/Dockerfile.base#L123

SecretsUsedInArgOrEnv: Do not use ARG or ENV instructions for sensitive data (ARG "GH_DOWNLOAD_TOKEN") More info: https://docs.docker.com/go/dockerfile/rule/secrets-used-in-arg-or-env/

Sensitive data should not be used in the ARG or ENV commands: test/e2e/Dockerfile.base#L113

SecretsUsedInArgOrEnv: Do not use ARG or ENV instructions for sensitive data (ARG "GH_DOWNLOAD_TOKEN") More info: https://docs.docker.com/go/dockerfile/rule/secrets-used-in-arg-or-env/

e2e / e2e (preview): test/e2e/tests/workbench/positron/deployments.cy.js#L53

Unexpected pending mocha test

e2e / e2e (preview): test/e2e/tests/deployments.cy.js#L61

Unexpected pending mocha test

Sensitive data should not be used in the ARG or ENV commands: test/e2e/Dockerfile.base#L113

SecretsUsedInArgOrEnv: Do not use ARG or ENV instructions for sensitive data (ARG "GH_DOWNLOAD_TOKEN") More info: https://docs.docker.com/go/dockerfile/rule/secrets-used-in-arg-or-env/

Sensitive data should not be used in the ARG or ENV commands: test/e2e/Dockerfile.base#L123

SecretsUsedInArgOrEnv: Do not use ARG or ENV instructions for sensitive data (ARG "GH_DOWNLOAD_TOKEN") More info: https://docs.docker.com/go/dockerfile/rule/secrets-used-in-arg-or-env/

e2e / e2e (release): test/e2e/tests/workbench/positron/deployments.cy.js#L53

Unexpected pending mocha test

e2e / e2e (release): test/e2e/tests/deployments.cy.js#L61

Unexpected pending mocha test

Artifacts

Produced during runtime

Name	Size	Digest
archives	53.3 MB	`sha256:d5fbb7326af49a9caa3f6d0c8cc885df7778ca4e35539f07cf354b6f434418ef`
bin	53.9 MB	`sha256:46662c8a331daa906a4e8303a1741abfecf601ff7b5b8f912ee3aaa6c5ead8b5`
dist	63.8 MB	`sha256:cd77878163abba1017ba81672e2dba59b0431a2762ff337632fbb2b06403d90e`
posit-dev~publisher~EJZDA3.dockerbuild	31.6 KB	`sha256:87a7e79e5b2bcb0b7eb5502287723cd43d6acc0de95b4bcdf5968d6ec54dc93d`
posit-dev~publisher~PAN5QW.dockerbuild	32.3 KB	`sha256:d54d78f6f5f8ee0bae6605e5fcb90f00564dff97d0276e55be6ffe174d64e097`
posit-dev~publisher~YHMNWZ.dockerbuild	31.7 KB	`sha256:a385f5e2519b02be53237bfa17c80ccd4b678d84510fce6e65aeab0f1a1bd5e8`
posit-dev~publisher~YS74PA.dockerbuild	31.2 KB	`sha256:440d38c2cb0815a61d276225f4efa6336bae36472454c80fa6da1b5df21ba89d`

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

security: restrict secrets inheritance in PR workflows #5950

Summary

security: restrict secrets inheritance in PR workflows #5950

Uh oh!

pull-request.yaml

Annotations

Artifacts