Skip to content

Commit 5342cc7

Browse files
authored
Merge pull request #21574 from github/redsun82/actions/remove-harden-runner-false-positive
Remove false positive injection sink models for `docker/build-push-action` and `step-security/harden-runner`
2 parents ee34e33 + e0bc18c commit 5342cc7

File tree

3 files changed

+4
-12
lines changed

3 files changed

+4
-12
lines changed
Lines changed: 4 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -0,0 +1,4 @@
1+
---
2+
category: minorAnalysis
3+
---
4+
* Removed false positive injection sink models for the `context` input of `docker/build-push-action` and the `allowed-endpoints` input of `step-security/harden-runner`.

actions/ql/lib/ext/manual/docker_build-push-action.model.yml

Lines changed: 0 additions & 6 deletions
This file was deleted.

actions/ql/lib/ext/manual/step-security_harden-runner.model.yml

Lines changed: 0 additions & 6 deletions
This file was deleted.

0 commit comments

Comments
 (0)