Buy commercial curl support from WolfSSL. We help you work
out your issues, debug your libcurl applications, use the API, port to new
platforms, add new features and more. With a team lead by the curl founder
himself.
Re: Discussions on Security Enhancements
- Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ] [ by messages with attachments ]
From: Daniel Stenberg via curl-library <curl-library_at_lists.haxx.se>
Date: Thu, 10 Nov 2022 20:49:07 +0100 (CET)
On Thu, 10 Nov 2022, Diogo Sant'Anna wrote:
> Although with this current configuration already secures your repo from
> workflows to write content, I'll list here some advantages on having them
> also written on the workflows, and I'd be happy to write those changes if
> you want, but I agree they're less relevant so that's totally up to you:
Yes please. If someone would make a pull-request with such a change I think we
would merge it for the reasons you state. It makes the workflow permission
situation clearer.
Date: Thu, 10 Nov 2022 20:49:07 +0100 (CET)
On Thu, 10 Nov 2022, Diogo Sant'Anna wrote:
> Although with this current configuration already secures your repo from
> workflows to write content, I'll list here some advantages on having them
> also written on the workflows, and I'd be happy to write those changes if
> you want, but I agree they're less relevant so that's totally up to you:
Yes please. If someone would make a pull-request with such a change I think we
would merge it for the reasons you state. It makes the workflow permission
situation clearer.
-- / daniel.haxx.se | Commercial curl support up to 24x7 is available! | Private help, bug fixes, support, ports, new features | https://curl.se/support.html -- Unsubscribe: https://lists.haxx.se/listinfo/curl-library Etiquette: https://curl.se/mail/etiquette.htmlReceived on 2022-11-10