-
-
Notifications
You must be signed in to change notification settings - Fork 360
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Warn if using secrets/env with plugin #4027
Conversation
Can we use settings with non-plugins? |
Yeah that's a discussion point. I'd just allow it (but warn) as they're just env vars in the end. |
I vote for Edit skip_clone: true
steps:
test:
image: alpine
settings:
token: qweasdzxc
commands:
- echo $$PLUGIN_TOKEN | sed -e 's/\(.\)/\1\ /g' |
This pr changes it, they're no longer prohibited, only a warning is printed. |
Title
I'm lost. |
Ah sorry 😂 I'll try to describe it better:
If you have a better title, just comment. |
So, now using If |
I would switch this PR to And for |
No. It's more like the "bad habit" errors. I think it should stay like this and warn about it, but don't fail.
If you set |
Also secrets that are allowed only for specified images won't be allowed? |
Sure, and they won't be available if you add |
I understand that it works, and why. Thank you for explanation.
Is this a temporary solution? Do you try to trick the system (semver)? |
No, I wouldn't make this a temporary solution, I'd keep it. |
I like fail-fast, strict approach, which was before. |
In many other cases, I agree, but at least environment and secrets should be allowed. I think there are many users using them, but don't care about the limitation that it's not a plugin. Failing at |
I feel I make too much efforts to defend something, that I do not really use. It makes me tired. Probably, you too.
I think so. In the end, I just wanna highlight another thing. It is just to think (or not :) about, no need to reply. |
Of course - secrets filter for example won't work. Yes, we need to have a clear documentation about this to help users understanding why this doesn't work. |
Codecov ReportAttention: Patch coverage is
Additional details and impacted files@@ Coverage Diff @@
## main #4027 +/- ##
==========================================
+ Coverage 26.84% 26.88% +0.03%
==========================================
Files 396 396
Lines 27497 27465 -32
==========================================
+ Hits 7382 7384 +2
+ Misses 19411 19376 -35
- Partials 704 705 +1 ☔ View full report in Codecov by Sentry. |
Deployment of preview was torn down |
address #3959
If
secrets
is set, it's not a plugin anymore.However, only warn about such cases, but do not fail.
This PR should be backported.