viaprog/shaka-player
1
0
Fork 0
mirror of https://github.com/shaka-project/shaka-player.git synced 2026-06-24 17:35:10 +03:00
Code Issues Packages Projects Releases Wiki Activity
Files
de4bb9e8a80d3cf9f51947f55b295b87a36498f9
shaka-player/.github/workflows
T
History
Joey Parrish 3a47bd1c03 ci: Prevent leaked credentials (#8142) 
Naive use of google-github-actions/auth and
google-github-actions/deploy-appengine can lead to leaked credentials.

In particular, uploading static content from the workspace root leads to
servable copies of the credentials file written by
google-github-actions/auth. This is exactly what the Shaka Player Demo
did. Making matters worse, google-github-actions/auth logs credential
filenames for all to see.

All uploaded credentials were expired before I uploaded this PR.

This fixes the leak by installing a gcloudignore file which prevents the
credentials from being uploaded.
2025-02-21 15:33:17 -08:00
..
custom-actions/prep-for-appspot
ci: Prevent leaked credentials (#8142)
2025-02-21 15:33:17 -08:00
shaka-bot-commands
ci: Add Google TV Streamer in the lab (#8015)
2025-02-04 11:55:43 -08:00
appspot.yaml
ci: Update nodejs to a maintained version (#7784)
2024-12-19 22:10:35 -08:00
build-and-test.yaml
build: Add new builds with only HLS or DASH (#8036)
2025-02-07 13:38:58 +01:00
compute-incremental-coverage.py
deflake.yaml
ci: Update workflow permissions (#7731)
2024-12-09 20:39:34 -08:00
demo-version-index.yaml
ci: Prevent leaked credentials (#8142)
2025-02-21 15:33:17 -08:00
nightly-demo.yaml
ci: Deploy nightly after push on main branch (#8069)
2025-02-13 06:25:52 +01:00
release-please.yaml
ci: Fix secrets for version index workflow (#7906)
2025-01-17 11:11:02 -08:00
report-incremental-coverage.yaml
ci: Do not persist credentials after checkout (#7772)
2024-12-18 08:50:10 +01:00
safari-homedir-launcher.sh
selenium-lab-tests.yaml
ci: Only run Safari native layout tests in lab (#8120)
2025-02-19 17:06:17 -08:00
sync-labels.yaml
chore: Sync common workflows (#7776)
2024-12-18 11:42:41 +01:00
talk-to-shaka-bot.yaml
ci: Do not persist credentials after checkout (#7772)
2024-12-18 08:50:10 +01:00
update-issues.yaml
chore: Sync common workflows (#7776)
2024-12-18 11:42:41 +01:00
update-screenshots.yaml
ci: Handle screenshot updates with no changes (#8135)
2025-02-20 10:34:47 -08:00
validate-pr-title.yaml
chore: Sync common workflows (#5586)
2023-09-01 19:24:00 -07:00