Skip to content

Instantly share code, notes, and snippets.

@AdnaneKhan

AdnaneKhan/puppet_gato_results.txt

Created June 12, 2024 21:45
Show Gist options
  • Save AdnaneKhan/ce8b032ec825fff402a51dc8519351d4 to your computer and use it in GitHub Desktop.
Save AdnaneKhan/ce8b032ec825fff402a51dc8519351d4 to your computer and use it in GitHub Desktop.
Download ZIP
Raw
puppet_gato_results.txt
[+] The authenticated user is: RampagingSloth
[+] The GitHub Classic PAT has the following scopes: gist, read:org, repo, workflow
[+] Enumerating the puppetlabs organization!
[!] The user has only public access!
[+] About to enumerate 561 repos within the puppetlabs organization!
[+] Querying and caching workflow YAML files!
[+] Querying 0 out of 6 batches!
[+] Querying 1 out of 6 batches!
[+] Querying 2 out of 6 batches!
[+] Querying 3 out of 6 batches!
[+] Querying 4 out of 6 batches!
[+] Querying 5 out of 6 batches!
- Enumerating: puppetlabs/puppetlabs-concat!
|==============================================================================|
| Repository Name: puppetlabs/puppetlabs-concat |
| Report Type: Actions Pwn Requests |
|------------------------------------------------------------------------------|
| Workflow Name: mend_ruby.yml |
| Issue Type: Pwn Request |
| Trigger(s): pull_request_target |
| Details: The workflow runs on a risky trigger and might check out the PR |
| code, see if it runs it! |
| Workflow URL: https://github.com/puppetlabs/cat-github- |
| actions/blob/main/.github/workflows/mend_ruby.yml |
| Calling Workflow: mend.yml |
| Confidence: HIGH |
|~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~|
| Job: mend |
| Checkout Ref: ${{ steps.set_ref.outputs.ref }} |
| Step If-check: EVALUATED: success() |
|==============================================================================|
- Enumerating: puppetlabs/puppetlabs-apache!
|==============================================================================|
| Repository Name: puppetlabs/puppetlabs-apache |
| Report Type: Actions Pwn Requests |
|------------------------------------------------------------------------------|
| Workflow Name: mend_ruby.yml |
| Issue Type: Pwn Request |
| Trigger(s): pull_request_target |
| Details: The workflow runs on a risky trigger and might check out the PR |
| code, see if it runs it! |
| Workflow URL: https://github.com/puppetlabs/cat-github- |
| actions/blob/main/.github/workflows/mend_ruby.yml |
| Calling Workflow: mend.yml |
| Confidence: HIGH |
|~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~|
| Job: mend |
| Checkout Ref: ${{ steps.set_ref.outputs.ref }} |
| Step If-check: EVALUATED: success() |
|==============================================================================|
- Enumerating: puppetlabs/puppet!
- Enumerating: puppetlabs/puppet-docs!
- Enumerating: puppetlabs/facter!
- Enumerating: puppetlabs/puppetlabs-lvm!
|==============================================================================|
| Repository Name: puppetlabs/puppetlabs-lvm |
| Report Type: Actions Pwn Requests |
|------------------------------------------------------------------------------|
| Workflow Name: module_ci.yml |
| Issue Type: Pwn Request |
| Trigger(s): pull_request_target |
| Details: The workflow runs on a risky trigger and might check out the PR |
| code, see if it runs it! |
| Workflow URL: https://github.com/puppetlabs/cat-github- |
| actions/blob/main/.github/workflows/module_ci.yml |
| Calling Workflow: ci.yml |
| Confidence: MEDIUM |
|~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~|
| Job: setup_matrix |
| Checkout Ref: ${{ github.event.pull_request.head.sha }} |
|~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~|
| Job: spec |
| Checkout Ref: ${{ github.event.pull_request.head.sha }} |
|------------------------------------------------------------------------------|
| Workflow Name: ci.yml |
| Issue Type: Pwn Request |
| Trigger(s): pull_request_target |
| Details: The workflow runs on a risky trigger and might check out the PR |
| code, see if it runs it! |
| Workflow URL: https://github.com/puppetlabs/puppetlabs- |
| lvm/blob/main/.github/workflows/ci.yml |
| Confidence: MEDIUM |
|~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~|
| Job: setup_matrix |
| Checkout Ref: ${{ github.event.pull_request.head.sha }} |
|~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~|
| Job: Acceptance |
| Checkout Ref: ${{ github.event.pull_request.head.sha }} |
|------------------------------------------------------------------------------|
| Workflow Name: mend_ruby.yml |
| Issue Type: Pwn Request |
| Trigger(s): pull_request_target |
| Details: The workflow runs on a risky trigger and might check out the PR |
| code, see if it runs it! |
| Workflow URL: https://github.com/puppetlabs/cat-github- |
| actions/blob/main/.github/workflows/mend_ruby.yml |
| Calling Workflow: mend.yml |
| Confidence: HIGH |
|~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~|
| Job: mend |
| Checkout Ref: ${{ steps.set_ref.outputs.ref }} |
| Step If-check: EVALUATED: success() |
|==============================================================================|
- Enumerating: puppetlabs/puppetlabs-firewall!
|==============================================================================|
| Repository Name: puppetlabs/puppetlabs-firewall |
| Report Type: Actions Pwn Requests |
|------------------------------------------------------------------------------|
| Workflow Name: mend_ruby.yml |
| Issue Type: Pwn Request |
| Trigger(s): pull_request_target |
| Details: The workflow runs on a risky trigger and might check out the PR |
| code, see if it runs it! |
| Workflow URL: https://github.com/puppetlabs/cat-github- |
| actions/blob/main/.github/workflows/mend_ruby.yml |
| Calling Workflow: mend.yml |
| Confidence: HIGH |
|~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~|
| Job: mend |
| Checkout Ref: ${{ steps.set_ref.outputs.ref }} |
| Step If-check: EVALUATED: success() |
|==============================================================================|
- Enumerating: puppetlabs/puppetlabs-stdlib!
|==============================================================================|
| Repository Name: puppetlabs/puppetlabs-stdlib |
| Report Type: Actions Pwn Requests |
|------------------------------------------------------------------------------|
| Workflow Name: mend_ruby.yml |
| Issue Type: Pwn Request |
| Trigger(s): pull_request_target |
| Details: The workflow runs on a risky trigger and might check out the PR |
| code, see if it runs it! |
| Workflow URL: https://github.com/puppetlabs/cat-github- |
| actions/blob/main/.github/workflows/mend_ruby.yml |
| Calling Workflow: mend.yml |
| Confidence: HIGH |
|~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~|
| Job: mend |
| Checkout Ref: ${{ steps.set_ref.outputs.ref }} |
| Step If-check: EVALUATED: success() |
|==============================================================================|
- Enumerating: puppetlabs/puppetlabs-java!
|==============================================================================|
| Repository Name: puppetlabs/puppetlabs-java |
| Report Type: Actions Pwn Requests |
|------------------------------------------------------------------------------|
| Workflow Name: mend_ruby.yml |
| Issue Type: Pwn Request |
| Trigger(s): pull_request_target |
| Details: The workflow runs on a risky trigger and might check out the PR |
| code, see if it runs it! |
| Workflow URL: https://github.com/puppetlabs/cat-github- |
| actions/blob/main/.github/workflows/mend_ruby.yml |
| Calling Workflow: mend.yml |
| Confidence: HIGH |
|~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~|
| Job: mend |
| Checkout Ref: ${{ steps.set_ref.outputs.ref }} |
| Step If-check: EVALUATED: success() |
|==============================================================================|
- Enumerating: puppetlabs/puppetlabs-mysql!
|==============================================================================|
| Repository Name: puppetlabs/puppetlabs-mysql |
| Report Type: Actions Pwn Requests |
|------------------------------------------------------------------------------|
| Workflow Name: mend_ruby.yml |
| Issue Type: Pwn Request |
| Trigger(s): pull_request_target |
| Details: The workflow runs on a risky trigger and might check out the PR |
| code, see if it runs it! |
| Workflow URL: https://github.com/puppetlabs/cat-github- |
| actions/blob/main/.github/workflows/mend_ruby.yml |
| Calling Workflow: mend.yml |
| Confidence: HIGH |
|~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~|
| Job: mend |
| Checkout Ref: ${{ steps.set_ref.outputs.ref }} |
| Step If-check: EVALUATED: success() |
|==============================================================================|
- Enumerating: puppetlabs/hiera!
- Enumerating: puppetlabs/puppetlabs-ntp!
|==============================================================================|
| Repository Name: puppetlabs/puppetlabs-ntp |
| Report Type: Actions Pwn Requests |
|------------------------------------------------------------------------------|
| Workflow Name: mend_ruby.yml |
| Issue Type: Pwn Request |
| Trigger(s): pull_request_target |
| Details: The workflow runs on a risky trigger and might check out the PR |
| code, see if it runs it! |
| Workflow URL: https://github.com/puppetlabs/cat-github- |
| actions/blob/main/.github/workflows/mend_ruby.yml |
| Calling Workflow: mend.yml |
| Confidence: HIGH |
|~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~|
| Job: mend |
| Checkout Ref: ${{ steps.set_ref.outputs.ref }} |
| Step If-check: EVALUATED: success() |
|==============================================================================|
- Enumerating: puppetlabs/education-builds!
- Enumerating: puppetlabs/puppetdb!
- Enumerating: puppetlabs/puppetlabs_spec_helper!
|==============================================================================|
| Repository Name: puppetlabs/puppetlabs_spec_helper |
| Report Type: Actions Pwn Requests |
|------------------------------------------------------------------------------|
| Workflow Name: gem_ci.yml |
| Issue Type: Pwn Request |
| Trigger(s): pull_request_target |
| Details: The workflow runs on a risky trigger and might check out the PR |
| code, see if it runs it! |
| Workflow URL: https://github.com/puppetlabs/cat-github- |
| actions/blob/main/.github/workflows/gem_ci.yml |
| Calling Workflow: ci.yml |
| Confidence: MEDIUM |
|~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~|
| Job: spec |
| Checkout Ref: ${{ github.event_name == 'pull_request_target' && |
| github.event.pull_request.head.sha || github.ref }} |
|------------------------------------------------------------------------------|
| Workflow Name: tooling_mend_ruby.yml |
| Issue Type: Pwn Request |
| Trigger(s): pull_request_target |
| Details: The workflow runs on a risky trigger and might check out the PR |
| code, see if it runs it! |
| Workflow URL: https://github.com/puppetlabs/cat-github- |
| actions/blob/main/.github/workflows/tooling_mend_ruby.yml |
| Calling Workflow: mend.yml |
| Confidence: HIGH |
|~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~|
| Job: mend |
| Checkout Ref: ${{ steps.set_ref.outputs.ref }} |
| Step If-check: EVALUATED: success() |
|==============================================================================|
- Enumerating: puppetlabs/puppetlabs-sshkeys!
- Enumerating: puppetlabs/puppetlabs-motd!
|==============================================================================|
| Repository Name: puppetlabs/puppetlabs-motd |
| Report Type: Actions Pwn Requests |
|------------------------------------------------------------------------------|
| Workflow Name: mend_ruby.yml |
| Issue Type: Pwn Request |
| Trigger(s): pull_request_target |
| Details: The workflow runs on a risky trigger and might check out the PR |
| code, see if it runs it! |
| Workflow URL: https://github.com/puppetlabs/cat-github- |
| actions/blob/main/.github/workflows/mend_ruby.yml |
| Calling Workflow: mend.yml |
| Confidence: HIGH |
|~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~|
| Job: mend |
| Checkout Ref: ${{ steps.set_ref.outputs.ref }} |
| Step If-check: EVALUATED: success() |
|==============================================================================|
- Enumerating: puppetlabs/puppetlabs-rsync!
- Enumerating: puppetlabs/puppetlabs-registry!
|==============================================================================|
| Repository Name: puppetlabs/puppetlabs-registry |
| Report Type: Actions Pwn Requests |
|------------------------------------------------------------------------------|
| Workflow Name: mend_ruby.yml |
| Issue Type: Pwn Request |
| Trigger(s): pull_request_target |
| Details: The workflow runs on a risky trigger and might check out the PR |
| code, see if it runs it! |
| Workflow URL: https://github.com/puppetlabs/cat-github- |
| actions/blob/main/.github/workflows/mend_ruby.yml |
| Calling Workflow: mend.yml |
| Confidence: HIGH |
|~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~|
| Job: mend |
| Checkout Ref: ${{ steps.set_ref.outputs.ref }} |
| Step If-check: EVALUATED: success() |
|==============================================================================|
- Enumerating: puppetlabs/puppetlabs-postgresql!
|==============================================================================|
| Repository Name: puppetlabs/puppetlabs-postgresql |
| Report Type: Actions Pwn Requests |
|------------------------------------------------------------------------------|
| Workflow Name: mend_ruby.yml |
| Issue Type: Pwn Request |
| Trigger(s): pull_request_target |
| Details: The workflow runs on a risky trigger and might check out the PR |
| code, see if it runs it! |
| Workflow URL: https://github.com/puppetlabs/cat-github- |
| actions/blob/main/.github/workflows/mend_ruby.yml |
| Calling Workflow: mend.yml |
| Confidence: HIGH |
|~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~|
| Job: mend |
| Checkout Ref: ${{ steps.set_ref.outputs.ref }} |
| Step If-check: EVALUATED: success() |
|==============================================================================|
- Enumerating: puppetlabs/puppetlabs-java_ks!
|==============================================================================|
| Repository Name: puppetlabs/puppetlabs-java_ks |
| Report Type: Actions Pwn Requests |
|------------------------------------------------------------------------------|
| Workflow Name: mend_ruby.yml |
| Issue Type: Pwn Request |
| Trigger(s): pull_request_target |
| Details: The workflow runs on a risky trigger and might check out the PR |
| code, see if it runs it! |
| Workflow URL: https://github.com/puppetlabs/cat-github- |
| actions/blob/main/.github/workflows/mend_ruby.yml |
| Calling Workflow: mend.yml |
| Confidence: HIGH |
|~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~|
| Job: mend |
| Checkout Ref: ${{ steps.set_ref.outputs.ref }} |
| Step If-check: EVALUATED: success() |
|==============================================================================|
- Enumerating: puppetlabs/showoff!
- Enumerating: puppetlabs/puppetlabs-xinetd!
- Enumerating: puppetlabs/puppetlabs-puppetdb!
|==============================================================================|
| Repository Name: puppetlabs/puppetlabs-puppetdb |
| Report Type: Actions Pwn Requests |
|------------------------------------------------------------------------------|
| Workflow Name: mend_ruby.yml |
| Issue Type: Pwn Request |
| Trigger(s): pull_request_target |
| Details: The workflow runs on a risky trigger and might check out the PR |
| code, see if it runs it! |
| Workflow URL: https://github.com/puppetlabs/cat-github-actions/blob/release- |
| any-tag/.github/workflows/mend_ruby.yml |
| Calling Workflow: mend.yml |
| Confidence: HIGH |
|~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~|
| Job: mend |
| Checkout Ref: ${{ steps.set_ref.outputs.ref }} |
| Step If-check: EVALUATED: success() |
|==============================================================================|
- Enumerating: puppetlabs/puppetlabs-inifile!
|==============================================================================|
| Repository Name: puppetlabs/puppetlabs-inifile |
| Report Type: Actions Pwn Requests |
|------------------------------------------------------------------------------|
| Workflow Name: mend_ruby.yml |
| Issue Type: Pwn Request |
| Trigger(s): pull_request_target |
| Details: The workflow runs on a risky trigger and might check out the PR |
| code, see if it runs it! |
| Workflow URL: https://github.com/puppetlabs/cat-github- |
| actions/blob/main/.github/workflows/mend_ruby.yml |
| Calling Workflow: mend.yml |
| Confidence: HIGH |
|~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~|
| Job: mend |
| Checkout Ref: ${{ steps.set_ref.outputs.ref }} |
| Step If-check: EVALUATED: success() |
|==============================================================================|
- Enumerating: puppetlabs/puppetlabs-release!
- Enumerating: puppetlabs/packaging!
- Enumerating: puppetlabs/build-data!
- Enumerating: puppetlabs/r10k!
- Enumerating: puppetlabs/puppetlabs-powershell!
|==============================================================================|
| Repository Name: puppetlabs/puppetlabs-powershell |
| Report Type: Actions Pwn Requests |
|------------------------------------------------------------------------------|
| Workflow Name: mend_ruby.yml |
| Issue Type: Pwn Request |
| Trigger(s): pull_request_target |
| Details: The workflow runs on a risky trigger and might check out the PR |
| code, see if it runs it! |
| Workflow URL: https://github.com/puppetlabs/cat-github- |
| actions/blob/main/.github/workflows/mend_ruby.yml |
| Calling Workflow: mend.yml |
| Confidence: HIGH |
|~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~|
| Job: mend |
| Checkout Ref: ${{ steps.set_ref.outputs.ref }} |
| Step If-check: EVALUATED: success() |
|==============================================================================|
- Enumerating: puppetlabs/puppet-rfc!
- Enumerating: puppetlabs/netdev_stdlib!
- Enumerating: puppetlabs/puppetlabs-reboot!
|==============================================================================|
| Repository Name: puppetlabs/puppetlabs-reboot |
| Report Type: Actions Pwn Requests |
|------------------------------------------------------------------------------|
| Workflow Name: mend_ruby.yml |
| Issue Type: Pwn Request |
| Trigger(s): pull_request_target |
| Details: The workflow runs on a risky trigger and might check out the PR |
| code, see if it runs it! |
| Workflow URL: https://github.com/puppetlabs/cat-github- |
| actions/blob/main/.github/workflows/mend_ruby.yml |
| Calling Workflow: mend.yml |
| Confidence: HIGH |
|~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~|
| Job: mend |
| Checkout Ref: ${{ steps.set_ref.outputs.ref }} |
| Step If-check: EVALUATED: success() |
|==============================================================================|
- Enumerating: puppetlabs/puppetlabs-windows_env!
|==============================================================================|
| Repository Name: puppetlabs/puppetlabs-windows_env |
| Report Type: Actions Pwn Requests |
|------------------------------------------------------------------------------|
| Workflow Name: mend_ruby.yml |
| Issue Type: Pwn Request |
| Trigger(s): pull_request_target |
| Details: The workflow runs on a risky trigger and might check out the PR |
| code, see if it runs it! |
| Workflow URL: https://github.com/puppetlabs/cat-github- |
| actions/blob/main/.github/workflows/mend_ruby.yml |
| Calling Workflow: mend.yml |
| Confidence: HIGH |
|~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~|
| Job: mend |
| Checkout Ref: ${{ steps.set_ref.outputs.ref }} |
| Step If-check: EVALUATED: success() |
|==============================================================================|
- Enumerating: puppetlabs/puppetlabs-sslcertificate!
|==============================================================================|
| Repository Name: puppetlabs/puppetlabs-sslcertificate |
| Report Type: Actions Pwn Requests |
|------------------------------------------------------------------------------|
| Workflow Name: mend_ruby.yml |
| Issue Type: Pwn Request |
| Trigger(s): pull_request_target |
| Details: The workflow runs on a risky trigger and might check out the PR |
| code, see if it runs it! |
| Workflow URL: https://github.com/puppetlabs/cat-github- |
| actions/blob/main/.github/workflows/mend_ruby.yml |
| Calling Workflow: mend.yml |
| Confidence: HIGH |
|~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~|
| Job: mend |
| Checkout Ref: ${{ steps.set_ref.outputs.ref }} |
| Step If-check: EVALUATED: success() |
|==============================================================================|
- Enumerating: puppetlabs/puppetlabs-windows_eventlog!
|==============================================================================|
| Repository Name: puppetlabs/puppetlabs-windows_eventlog |
| Report Type: Actions Pwn Requests |
|------------------------------------------------------------------------------|
| Workflow Name: mend_ruby.yml |
| Issue Type: Pwn Request |
| Trigger(s): pull_request_target |
| Details: The workflow runs on a risky trigger and might check out the PR |
| code, see if it runs it! |
| Workflow URL: https://github.com/puppetlabs/cat-github- |
| actions/blob/main/.github/workflows/mend_ruby.yml |
| Calling Workflow: mend.yml |
| Confidence: HIGH |
|~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~|
| Job: mend |
| Checkout Ref: ${{ steps.set_ref.outputs.ref }} |
| Step If-check: EVALUATED: success() |
|==============================================================================|
- Enumerating: puppetlabs/vmpooler!
- Enumerating: puppetlabs/clj-kitchensink!
- Enumerating: puppetlabs/trapperkeeper!
- Enumerating: puppetlabs/semantic_puppet!
- Enumerating: puppetlabs/puppetlabs-acl!
|==============================================================================|
| Repository Name: puppetlabs/puppetlabs-acl |
| Report Type: Actions Pwn Requests |
|------------------------------------------------------------------------------|
| Workflow Name: mend_ruby.yml |
| Issue Type: Pwn Request |
| Trigger(s): pull_request_target |
| Details: The workflow runs on a risky trigger and might check out the PR |
| code, see if it runs it! |
| Workflow URL: https://github.com/puppetlabs/cat-github- |
| actions/blob/main/.github/workflows/mend_ruby.yml |
| Calling Workflow: mend.yml |
| Confidence: HIGH |
|~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~|
| Job: mend |
| Checkout Ref: ${{ steps.set_ref.outputs.ref }} |
| Step If-check: EVALUATED: success() |
|==============================================================================|
- Enumerating: puppetlabs/trapperkeeper-webserver-jetty9!
- Enumerating: puppetlabs/jvm-ssl-utils!
- Enumerating: puppetlabs/ruby-hocon!
- Enumerating: puppetlabs/ezbake!
- Enumerating: puppetlabs/clj-http-client!
- Enumerating: puppetlabs/clj-typesafe-config!
- Enumerating: puppetlabs/jdbc-util!
- Enumerating: puppetlabs/puppetserver!
- Enumerating: puppetlabs/puppet-specifications!
- Enumerating: puppetlabs/forge-ruby!
- Enumerating: puppetlabs/horsewhisperer!
- Enumerating: puppetlabs/puppetlabs-tomcat!
|==============================================================================|
| Repository Name: puppetlabs/puppetlabs-tomcat |
| Report Type: Actions Pwn Requests |
|------------------------------------------------------------------------------|
| Workflow Name: mend_ruby.yml |
| Issue Type: Pwn Request |
| Trigger(s): pull_request_target |
| Details: The workflow runs on a risky trigger and might check out the PR |
| code, see if it runs it! |
| Workflow URL: https://github.com/puppetlabs/cat-github- |
| actions/blob/main/.github/workflows/mend_ruby.yml |
| Calling Workflow: mend.yml |
| Confidence: HIGH |
|~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~|
| Job: mend |
| Checkout Ref: ${{ steps.set_ref.outputs.ref }} |
| Step If-check: EVALUATED: success() |
|==============================================================================|
- Enumerating: puppetlabs/harrison!
- Enumerating: puppetlabs/puppetlabs-sqlserver!
|==============================================================================|
| Repository Name: puppetlabs/puppetlabs-sqlserver |
| Report Type: Actions Pwn Requests |
|------------------------------------------------------------------------------|
| Workflow Name: module_ci.yml |
| Issue Type: Pwn Request |
| Trigger(s): pull_request_target |
| Details: The workflow runs on a risky trigger and might check out the PR |
| code, see if it runs it! |
| Workflow URL: https://github.com/puppetlabs/cat-github- |
| actions/blob/main/.github/workflows/module_ci.yml |
| Calling Workflow: ci.yml |
| Confidence: MEDIUM |
|~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~|
| Job: setup_matrix |
| Checkout Ref: ${{ github.event.pull_request.head.sha }} |
|~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~|
| Job: spec |
| Checkout Ref: ${{ github.event.pull_request.head.sha }} |
|------------------------------------------------------------------------------|
| Workflow Name: ci.yml |
| Issue Type: Pwn Request |
| Trigger(s): pull_request_target |
| Details: The workflow runs on a risky trigger and might check out the PR |
| code, see if it runs it! |
| Workflow URL: https://github.com/puppetlabs/puppetlabs- |
| sqlserver/blob/main/.github/workflows/ci.yml |
| Confidence: HIGH |
|~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~|
| Job: setup_matrix |
| Checkout Ref: ${{ github.event.pull_request.head.sha }} |
| Step If-check: EVALUATED: ${{ github.repository_owner == 'puppetlabs' }} |
|~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~|
| Job: Acceptance |
| Job If-Check: ${{ needs.setup_matrix.outputs.matrix != '{}' }} |
| Checkout Ref: ${{ github.event.pull_request.head.sha }} |
|------------------------------------------------------------------------------|
| Workflow Name: mend_ruby.yml |
| Issue Type: Pwn Request |
| Trigger(s): pull_request_target |
| Details: The workflow runs on a risky trigger and might check out the PR |
| code, see if it runs it! |
| Workflow URL: https://github.com/puppetlabs/cat-github- |
| actions/blob/main/.github/workflows/mend_ruby.yml |
| Calling Workflow: mend.yml |
| Confidence: HIGH |
|~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~|
| Job: mend |
| Checkout Ref: ${{ steps.set_ref.outputs.ref }} |
| Step If-check: EVALUATED: success() |
|==============================================================================|
- Enumerating: puppetlabs/icfp-2014!
- Enumerating: puppetlabs/clj-schema-tools!
- Enumerating: puppetlabs/pcp-broker!
- Enumerating: puppetlabs/clamps!
- Enumerating: puppetlabs/puppet-strings!
|==============================================================================|
| Repository Name: puppetlabs/puppet-strings |
| Report Type: Actions Pwn Requests |
|------------------------------------------------------------------------------|
| Workflow Name: gem_ci.yml |
| Issue Type: Pwn Request |
| Trigger(s): pull_request_target |
| Details: The workflow runs on a risky trigger and might check out the PR |
| code, see if it runs it! |
| Workflow URL: https://github.com/puppetlabs/cat-github- |
| actions/blob/main/.github/workflows/gem_ci.yml |
| Calling Workflow: ci.yml |
| Confidence: MEDIUM |
|~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~|
| Job: spec |
| Checkout Ref: ${{ github.event_name == 'pull_request_target' && |
| github.event.pull_request.head.sha || github.ref }} |
|------------------------------------------------------------------------------|
| Workflow Name: tooling_mend_ruby.yml |
| Issue Type: Pwn Request |
| Trigger(s): pull_request_target |
| Details: The workflow runs on a risky trigger and might check out the PR |
| code, see if it runs it! |
| Workflow URL: https://github.com/puppetlabs/cat-github- |
| actions/blob/main/.github/workflows/tooling_mend_ruby.yml |
| Calling Workflow: mend.yml |
| Confidence: HIGH |
|~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~|
| Job: mend |
| Checkout Ref: ${{ steps.set_ref.outputs.ref }} |
| Step If-check: EVALUATED: success() |
|==============================================================================|
- Enumerating: puppetlabs/cpp-pcp-client!
- Enumerating: puppetlabs/ring-middleware!
- Enumerating: puppetlabs/pxp-agent!
- Enumerating: puppetlabs/net_http_unix!
- Enumerating: puppetlabs/puppetfactory!
- Enumerating: puppetlabs/puppetlabs-hocon!
|==============================================================================|
| Repository Name: puppetlabs/puppetlabs-hocon |
| Report Type: Actions Pwn Requests |
|------------------------------------------------------------------------------|
| Workflow Name: mend_ruby.yml |
| Issue Type: Pwn Request |
| Trigger(s): pull_request_target |
| Details: The workflow runs on a risky trigger and might check out the PR |
| code, see if it runs it! |
| Workflow URL: https://github.com/puppetlabs/cat-github- |
| actions/blob/main/.github/workflows/mend_ruby.yml |
| Calling Workflow: mend.yml |
| Confidence: HIGH |
|~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~|
| Job: mend |
| Checkout Ref: ${{ steps.set_ref.outputs.ref }} |
| Step If-check: EVALUATED: success() |
|==============================================================================|
- Enumerating: puppetlabs/vmfloaty!
- Enumerating: puppetlabs/puppet-classify!
- Enumerating: puppetlabs/puppetlabs-transition!
- Enumerating: puppetlabs/puppetlabs-vsphere!
- Enumerating: puppetlabs/vanagon!
- Enumerating: puppetlabs/puppet-agent!
- Enumerating: puppetlabs/scooter!
- Enumerating: puppetlabs/puppetlabs-mount_iso!
|==============================================================================|
| Repository Name: puppetlabs/puppetlabs-mount_iso |
| Report Type: Actions Pwn Requests |
|------------------------------------------------------------------------------|
| Workflow Name: mend_ruby.yml |
| Issue Type: Pwn Request |
| Trigger(s): pull_request_target |
| Details: The workflow runs on a risky trigger and might check out the PR |
| code, see if it runs it! |
| Workflow URL: https://github.com/puppetlabs/cat-github- |
| actions/blob/main/.github/workflows/mend_ruby.yml |
| Calling Workflow: mend.yml |
| Confidence: HIGH |
|~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~|
| Job: mend |
| Checkout Ref: ${{ steps.set_ref.outputs.ref }} |
| Step If-check: EVALUATED: success() |
|==============================================================================|
- Enumerating: puppetlabs/dujour-version-check!
- Enumerating: puppetlabs/puppetlabs-ibm_installation_manager!
- Enumerating: puppetlabs/puppetlabs-tagmail!
- Enumerating: puppetlabs/leatherman!
- Enumerating: puppetlabs/comidi!
- Enumerating: puppetlabs/pltraining-userprefs!
- Enumerating: puppetlabs/pltraining-localrepo!
- Enumerating: puppetlabs/pltraining-rbac!
- Enumerating: puppetlabs/clj-pcp-client!
- Enumerating: puppetlabs/clj-pcp-common!
- Enumerating: puppetlabs/pcp-specifications!
- Enumerating: puppetlabs/trapperkeeper-status!
- Enumerating: puppetlabs/master_manipulator!
- Enumerating: puppetlabs/puppetlabs-wsus_client!
|==============================================================================|
| Repository Name: puppetlabs/puppetlabs-wsus_client |
| Report Type: Actions Pwn Requests |
|------------------------------------------------------------------------------|
| Workflow Name: mend_ruby.yml |
| Issue Type: Pwn Request |
| Trigger(s): pull_request_target |
| Details: The workflow runs on a risky trigger and might check out the PR |
| code, see if it runs it! |
| Workflow URL: https://github.com/puppetlabs/cat-github- |
| actions/blob/main/.github/workflows/mend_ruby.yml |
| Calling Workflow: mend.yml |
| Confidence: HIGH |
|~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~|
| Job: mend |
| Checkout Ref: ${{ steps.set_ref.outputs.ref }} |
| Step If-check: EVALUATED: success() |
|==============================================================================|
- Enumerating: puppetlabs/ticketmatch!
- Enumerating: puppetlabs/puppetlabs-satellite_pe_tools!
|==============================================================================|
| Repository Name: puppetlabs/puppetlabs-satellite_pe_tools |
| Report Type: Actions Pwn Requests |
|------------------------------------------------------------------------------|
| Workflow Name: mend_ruby.yml |
| Issue Type: Pwn Request |
| Trigger(s): pull_request_target |
| Details: The workflow runs on a risky trigger and might check out the PR |
| code, see if it runs it! |
| Workflow URL: https://github.com/puppetlabs/cat-github- |
| actions/blob/main/.github/workflows/mend_ruby.yml |
| Calling Workflow: mend.yml |
| Confidence: HIGH |
|~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~|
| Job: mend |
| Checkout Ref: ${{ steps.set_ref.outputs.ref }} |
| Step If-check: EVALUATED: success() |
|==============================================================================|
- Enumerating: puppetlabs/clj-i18n!
- Enumerating: puppetlabs/puppetlabs-node_manager!
|==============================================================================|
| Repository Name: puppetlabs/puppetlabs-node_manager |
| Report Type: Actions Pwn Requests |
|------------------------------------------------------------------------------|
| Workflow Name: mend_ruby.yml |
| Issue Type: Pwn Request |
| Trigger(s): pull_request_target |
| Details: The workflow runs on a risky trigger and might check out the PR |
| code, see if it runs it! |
| Workflow URL: https://github.com/puppetlabs/cat-github- |
| actions/blob/main/.github/workflows/mend_ruby.yml |
| Calling Workflow: mend.yml |
| Confidence: HIGH |
|~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~|
| Job: mend |
| Checkout Ref: ${{ steps.set_ref.outputs.ref }} |
| Step If-check: EVALUATED: success() |
|==============================================================================|
- Enumerating: puppetlabs/puppetlabs-puppet_agent!
- Enumerating: puppetlabs/puppetlabs-websphere_application_server!
- Enumerating: puppetlabs/puppetlabs-accounts!
|==============================================================================|
| Repository Name: puppetlabs/puppetlabs-accounts |
| Report Type: Actions Pwn Requests |
|------------------------------------------------------------------------------|
| Workflow Name: mend_ruby.yml |
| Issue Type: Pwn Request |
| Trigger(s): pull_request_target |
| Details: The workflow runs on a risky trigger and might check out the PR |
| code, see if it runs it! |
| Workflow URL: https://github.com/puppetlabs/cat-github- |
| actions/blob/main/.github/workflows/mend_ruby.yml |
| Calling Workflow: mend.yml |
| Confidence: HIGH |
|~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~|
| Job: mend |
| Checkout Ref: ${{ steps.set_ref.outputs.ref }} |
| Step If-check: EVALUATED: success() |
|==============================================================================|
- Enumerating: puppetlabs/trapperkeeper-scheduler!
- Enumerating: puppetlabs/trapperkeeper-metrics!
- Enumerating: puppetlabs/trapperkeeper-comidi-metrics!
- Enumerating: puppetlabs/beaker-answers!
- Enumerating: puppetlabs/cpp-hocon!
- Enumerating: puppetlabs/trapperkeeper-authorization!
- Enumerating: puppetlabs/control-repo!
- Enumerating: puppetlabs/puppet-ca-bundle!
- Enumerating: puppetlabs/puppetlabs-puppet_authorization!
|==============================================================================|
| Repository Name: puppetlabs/puppetlabs-puppet_authorization |
| Report Type: Actions Pwn Requests |
|------------------------------------------------------------------------------|
| Workflow Name: mend_ruby.yml |
| Issue Type: Pwn Request |
| Trigger(s): pull_request_target |
| Details: The workflow runs on a risky trigger and might check out the PR |
| code, see if it runs it! |
| Workflow URL: https://github.com/puppetlabs/cat-github- |
| actions/blob/main/.github/workflows/mend_ruby.yml |
| Calling Workflow: mend.yml |
| Confidence: HIGH |
|~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~|
| Job: mend |
| Checkout Ref: ${{ steps.set_ref.outputs.ref }} |
| Step If-check: EVALUATED: success() |
|==============================================================================|
- Enumerating: puppetlabs/pltraining-dockeragent!
- Enumerating: puppetlabs/structured-logging!
- Enumerating: puppetlabs/learndot_api!
- Enumerating: puppetlabs/ruby-pcp-client!
- Enumerating: puppetlabs/puppetlabs-node_encrypt!
|==============================================================================|
| Repository Name: puppetlabs/puppetlabs-node_encrypt |
| Report Type: Actions Pwn Requests |
|------------------------------------------------------------------------------|
| Workflow Name: mend_ruby.yml |
| Issue Type: Pwn Request |
| Trigger(s): pull_request_target |
| Details: The workflow runs on a risky trigger and might check out the PR |
| code, see if it runs it! |
| Workflow URL: https://github.com/puppetlabs/cat-github- |
| actions/blob/main/.github/workflows/mend_ruby.yml |
| Calling Workflow: mend.yml |
| Confidence: HIGH |
|~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~|
| Job: mend |
| Checkout Ref: ${{ steps.set_ref.outputs.ref }} |
| Step If-check: EVALUATED: success() |
|==============================================================================|
- Enumerating: puppetlabs/lein-release-4digit-version!
- Enumerating: puppetlabs/puppetlabs-pe_databases!
- Enumerating: puppetlabs/clj-rbac-client!
- Enumerating: puppetlabs/puppet-validator!
- Enumerating: puppetlabs/hierademo!
- Enumerating: puppetlabs/beaker-pe!
- Enumerating: puppetlabs/jruby-utils!
- Enumerating: puppetlabs/PuppetManifestGenerator!
- Enumerating: puppetlabs/prosvc-preview_report!
- Enumerating: puppetlabs/gettext-setup-gem!
- Enumerating: puppetlabs/puppetlabs-puppetserver_perf_control!
- Enumerating: puppetlabs/stockpile!
- Enumerating: puppetlabs/puppetlabs-iis!
|==============================================================================|
| Repository Name: puppetlabs/puppetlabs-iis |
| Report Type: Actions Pwn Requests |
|------------------------------------------------------------------------------|
| Workflow Name: mend_ruby.yml |
| Issue Type: Pwn Request |
| Trigger(s): pull_request_target |
| Details: The workflow runs on a risky trigger and might check out the PR |
| code, see if it runs it! |
| Workflow URL: https://github.com/puppetlabs/cat-github- |
| actions/blob/main/.github/workflows/mend_ruby.yml |
| Calling Workflow: mend.yml |
| Confidence: HIGH |
|~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~|
| Job: mend |
| Checkout Ref: ${{ steps.set_ref.outputs.ref }} |
| Step If-check: EVALUATED: success() |
|==============================================================================|
- Enumerating: puppetlabs/trapperkeeper-filesystem-watcher!
- Enumerating: puppetlabs/beaker-abs!
- Enumerating: puppetlabs/clj-parent!
- Enumerating: puppetlabs/orchestrator_client-ruby!
- Enumerating: puppetlabs/puppet-vro-starter_content!
- Enumerating: puppetlabs/pl-build-tools-vanagon!
- Enumerating: puppetlabs/puppetlabs-puppetdb_gc!
- Enumerating: puppetlabs/puppet-module-gems!
- Enumerating: puppetlabs/pcore-java!
- Enumerating: puppetlabs/pltraining-pasture!
- Enumerating: puppetlabs/distelli-common!
- Enumerating: puppetlabs/pdk!
|==============================================================================|
| Repository Name: puppetlabs/pdk |
| Report Type: Actions Pwn Requests |
|------------------------------------------------------------------------------|
| Workflow Name: gem_ci.yml |
| Issue Type: Pwn Request |
| Trigger(s): pull_request_target |
| Details: The workflow runs on a risky trigger and might check out the PR |
| code, see if it runs it! |
| Workflow URL: https://github.com/puppetlabs/cat-github- |
| actions/blob/main/.github/workflows/gem_ci.yml |
| Calling Workflow: ci.yml |
| Confidence: MEDIUM |
|~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~|
| Job: spec |
| Checkout Ref: ${{ github.event_name == 'pull_request_target' && |
| github.event.pull_request.head.sha || github.ref }} |
|------------------------------------------------------------------------------|
| Workflow Name: tooling_mend_ruby.yml |
| Issue Type: Pwn Request |
| Trigger(s): pull_request_target |
| Details: The workflow runs on a risky trigger and might check out the PR |
| code, see if it runs it! |
| Workflow URL: https://github.com/puppetlabs/cat-github- |
| actions/blob/main/.github/workflows/tooling_mend_ruby.yml |
| Calling Workflow: mend.yml |
| Confidence: HIGH |
|~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~|
| Job: mend |
| Checkout Ref: ${{ steps.set_ref.outputs.ref }} |
| Step If-check: EVALUATED: success() |
|==============================================================================|
- Enumerating: puppetlabs/puppetlabs-freeradius!
- Enumerating: puppetlabs/puppet-vscode!
|==============================================================================|
| Repository Name: puppetlabs/puppet-vscode |
| Report Type: Actions Pwn Requests |
|------------------------------------------------------------------------------|
| Workflow Name: mend.yml |
| Issue Type: Pwn Request |
| Trigger(s): pull_request_target |
| Details: The workflow runs on a risky trigger and might check out the PR |
| code, see if it runs it! |
| Workflow URL: https://github.com/puppetlabs/puppet- |
| vscode/blob/main/.github/workflows/mend.yml |
| Confidence: MEDIUM |
|~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~|
| Job: mend |
| Checkout Ref: ${{ steps.set_ref.outputs.ref }} |
|==============================================================================|
- Enumerating: puppetlabs/beaker-puppet!
- Enumerating: puppetlabs/pdk-vanagon!
|==============================================================================|
| Repository Name: puppetlabs/pdk-vanagon |
| Report Type: Actions Pwn Requests |
|------------------------------------------------------------------------------|
| Workflow Name: tooling_mend_ruby.yml |
| Issue Type: Pwn Request |
| Trigger(s): pull_request_target |
| Details: The workflow runs on a risky trigger and might check out the PR |
| code, see if it runs it! |
| Workflow URL: https://github.com/puppetlabs/cat-github- |
| actions/blob/main/.github/workflows/tooling_mend_ruby.yml |
| Calling Workflow: mend.yml |
| Confidence: HIGH |
|~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~|
| Job: mend |
| Checkout Ref: ${{ steps.set_ref.outputs.ref }} |
| Step If-check: EVALUATED: success() |
|==============================================================================|
- Enumerating: puppetlabs/aws_resource_reaper!
- Enumerating: puppetlabs/jruby-deps!
- Enumerating: puppetlabs/analytics-client!
- Enumerating: puppetlabs/libwhereami!
- Enumerating: puppetlabs/beaker-vmpooler!
- Enumerating: puppetlabs/puppetlabs-docker!
|==============================================================================|
| Repository Name: puppetlabs/puppetlabs-docker |
| Report Type: Actions Pwn Requests |
|------------------------------------------------------------------------------|
| Workflow Name: mend_ruby.yml |
| Issue Type: Pwn Request |
| Trigger(s): pull_request_target |
| Details: The workflow runs on a risky trigger and might check out the PR |
| code, see if it runs it! |
| Workflow URL: https://github.com/puppetlabs/cat-github- |
| actions/blob/main/.github/workflows/mend_ruby.yml |
| Calling Workflow: mend.yml |
| Confidence: HIGH |
|~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~|
| Job: mend |
| Checkout Ref: ${{ steps.set_ref.outputs.ref }} |
| Step If-check: EVALUATED: success() |
|==============================================================================|
- Enumerating: puppetlabs/puppetlabs-helm!
- Enumerating: puppetlabs/puppet-classroom-manager!
- Enumerating: puppetlabs/education-infrastructure-classroom!
- Enumerating: puppetlabs/rubocop-i18n!
- Enumerating: puppetlabs/bolt!
- Enumerating: puppetlabs/nssm!
- Enumerating: puppetlabs/puppetlabs-package!
|==============================================================================|
| Repository Name: puppetlabs/puppetlabs-package |
| Report Type: Actions Pwn Requests |
|------------------------------------------------------------------------------|
| Workflow Name: mend_ruby.yml |
| Issue Type: Pwn Request |
| Trigger(s): pull_request_target |
| Details: The workflow runs on a risky trigger and might check out the PR |
| code, see if it runs it! |
| Workflow URL: https://github.com/puppetlabs/cat-github- |
| actions/blob/main/.github/workflows/mend_ruby.yml |
| Calling Workflow: mend.yml |
| Confidence: HIGH |
|~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~|
| Job: mend |
| Checkout Ref: ${{ steps.set_ref.outputs.ref }} |
| Step If-check: EVALUATED: success() |
|==============================================================================|
- Enumerating: puppetlabs/puppet-resource_api!
|==============================================================================|
| Repository Name: puppetlabs/puppet-resource_api |
| Report Type: Actions Pwn Requests |
|------------------------------------------------------------------------------|
| Workflow Name: tooling_mend_ruby.yml |
| Issue Type: Pwn Request |
| Trigger(s): pull_request_target |
| Details: The workflow runs on a risky trigger and might check out the PR |
| code, see if it runs it! |
| Workflow URL: https://github.com/puppetlabs/cat-github- |
| actions/blob/main/.github/workflows/tooling_mend_ruby.yml |
| Calling Workflow: mend.yml |
| Confidence: HIGH |
|~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~|
| Job: mend |
| Checkout Ref: ${{ steps.set_ref.outputs.ref }} |
| Step If-check: EVALUATED: success() |
|==============================================================================|
- Enumerating: puppetlabs/puppetlabs-kubernetes!
|==============================================================================|
| Repository Name: puppetlabs/puppetlabs-kubernetes |
| Report Type: Actions Pwn Requests |
|------------------------------------------------------------------------------|
| Workflow Name: mend_ruby.yml |
| Issue Type: Pwn Request |
| Trigger(s): pull_request_target |
| Details: The workflow runs on a risky trigger and might check out the PR |
| code, see if it runs it! |
| Workflow URL: https://github.com/puppetlabs/cat-github- |
| actions/blob/main/.github/workflows/mend_ruby.yml |
| Calling Workflow: mend.yml |
| Confidence: HIGH |
|~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~|
| Job: mend |
| Checkout Ref: ${{ steps.set_ref.outputs.ref }} |
| Step If-check: EVALUATED: success() |
|==============================================================================|
- Enumerating: puppetlabs/puppetlabs-service!
|==============================================================================|
| Repository Name: puppetlabs/puppetlabs-service |
| Report Type: Actions Pwn Requests |
|------------------------------------------------------------------------------|
| Workflow Name: mend_ruby.yml |
| Issue Type: Pwn Request |
| Trigger(s): pull_request_target |
| Details: The workflow runs on a risky trigger and might check out the PR |
| code, see if it runs it! |
| Workflow URL: https://github.com/puppetlabs/cat-github- |
| actions/blob/main/.github/workflows/mend_ruby.yml |
| Calling Workflow: mend.yml |
| Confidence: HIGH |
|~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~|
| Job: mend |
| Checkout Ref: ${{ steps.set_ref.outputs.ref }} |
| Step If-check: EVALUATED: success() |
|==============================================================================|
- Enumerating: puppetlabs/puppet-runtime!
- Enumerating: puppetlabs/puppetlabs-puppet_conf!
|==============================================================================|
| Repository Name: puppetlabs/puppetlabs-puppet_conf |
| Report Type: Actions Pwn Requests |
|------------------------------------------------------------------------------|
| Workflow Name: mend_ruby.yml |
| Issue Type: Pwn Request |
| Trigger(s): pull_request_target |
| Details: The workflow runs on a risky trigger and might check out the PR |
| code, see if it runs it! |
| Workflow URL: https://github.com/puppetlabs/cat-github- |
| actions/blob/main/.github/workflows/mend_ruby.yml |
| Calling Workflow: mend.yml |
| Confidence: HIGH |
|~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~|
| Job: mend |
| Checkout Ref: ${{ steps.set_ref.outputs.ref }} |
| Step If-check: EVALUATED: success() |
|==============================================================================|
- Enumerating: puppetlabs/puppetlabs-facter_task!
|==============================================================================|
| Repository Name: puppetlabs/puppetlabs-facter_task |
| Report Type: Actions Pwn Requests |
|------------------------------------------------------------------------------|
| Workflow Name: mend_ruby.yml |
| Issue Type: Pwn Request |
| Trigger(s): pull_request_target |
| Details: The workflow runs on a risky trigger and might check out the PR |
| code, see if it runs it! |
| Workflow URL: https://github.com/puppetlabs/cat-github- |
| actions/blob/main/.github/workflows/mend_ruby.yml |
| Calling Workflow: mend.yml |
| Confidence: HIGH |
|~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~|
| Job: mend |
| Checkout Ref: ${{ steps.set_ref.outputs.ref }} |
| Step If-check: EVALUATED: success() |
|==============================================================================|
- Enumerating: puppetlabs/puppetlabs-exec!
|==============================================================================|
| Repository Name: puppetlabs/puppetlabs-exec |
| Report Type: Actions Pwn Requests |
|------------------------------------------------------------------------------|
| Workflow Name: mend_ruby.yml |
| Issue Type: Pwn Request |
| Trigger(s): pull_request_target |
| Details: The workflow runs on a risky trigger and might check out the PR |
| code, see if it runs it! |
| Workflow URL: https://github.com/puppetlabs/cat-github- |
| actions/blob/main/.github/workflows/mend_ruby.yml |
| Calling Workflow: mend.yml |
| Confidence: HIGH |
|~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~|
| Job: mend |
| Checkout Ref: ${{ steps.set_ref.outputs.ref }} |
| Step If-check: EVALUATED: success() |
|==============================================================================|
- Enumerating: puppetlabs/infinitory!
- Enumerating: puppetlabs/puppetlabs-bootstrap!
- Enumerating: puppetlabs/kream!
- Enumerating: puppetlabs/beaker-task_helper!
- Enumerating: puppetlabs/task-modules!
- Enumerating: puppetlabs/puppetlabs-dsc_lite!
|==============================================================================|
| Repository Name: puppetlabs/puppetlabs-dsc_lite |
| Report Type: Actions Pwn Requests |
|------------------------------------------------------------------------------|
| Workflow Name: tooling_mend_ruby.yml |
| Issue Type: Pwn Request |
| Trigger(s): pull_request_target |
| Details: The workflow runs on a risky trigger and might check out the PR |
| code, see if it runs it! |
| Workflow URL: https://github.com/puppetlabs/cat-github- |
| actions/blob/main/.github/workflows/tooling_mend_ruby.yml |
| Calling Workflow: mend.yml |
| Confidence: HIGH |
|~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~|
| Job: mend |
| Checkout Ref: ${{ steps.set_ref.outputs.ref }} |
| Step If-check: EVALUATED: success() |
|==============================================================================|
- Enumerating: puppetlabs/puppetlabs-rook!
- Enumerating: puppetlabs/puppetlabs-scheduled_task!
|==============================================================================|
| Repository Name: puppetlabs/puppetlabs-scheduled_task |
| Report Type: Actions Pwn Requests |
|------------------------------------------------------------------------------|
| Workflow Name: mend_ruby.yml |
| Issue Type: Pwn Request |
| Trigger(s): pull_request_target |
| Details: The workflow runs on a risky trigger and might check out the PR |
| code, see if it runs it! |
| Workflow URL: https://github.com/puppetlabs/cat-github- |
| actions/blob/main/.github/workflows/mend_ruby.yml |
| Calling Workflow: mend.yml |
| Confidence: HIGH |
|~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~|
| Job: mend |
| Checkout Ref: ${{ steps.set_ref.outputs.ref }} |
| Step If-check: EVALUATED: success() |
|==============================================================================|
- Enumerating: puppetlabs/pdk-templates!
|==============================================================================|
| Repository Name: puppetlabs/pdk-templates |
| Report Type: Actions Pwn Requests |
|------------------------------------------------------------------------------|
| Workflow Name: tooling_mend_ruby.yml |
| Issue Type: Pwn Request |
| Trigger(s): pull_request_target |
| Details: The workflow runs on a risky trigger and might check out the PR |
| code, see if it runs it! |
| Workflow URL: https://github.com/puppetlabs/cat-github- |
| actions/blob/main/.github/workflows/tooling_mend_ruby.yml |
| Calling Workflow: mend.yml |
| Confidence: HIGH |
|~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~|
| Job: mend |
| Checkout Ref: ${{ steps.set_ref.outputs.ref }} |
| Step If-check: EVALUATED: success() |
|==============================================================================|
- Enumerating: puppetlabs/cisco_ios!
- Enumerating: puppetlabs/anubis-docker!
- Enumerating: puppetlabs/support-tasks!
- Enumerating: puppetlabs/bolt-vanagon!
|==============================================================================|
| Repository Name: puppetlabs/bolt-vanagon |
| Report Type: Actions Script Injection |
|------------------------------------------------------------------------------|
| Workflow Name: snyk-scan.yml |
| Issue Type: Actions Injection |
| Trigger(s): pull_request_target |
| Details: The workflow uses variables by context expression within run or |
| script steps. If the step is reachable and the variables are user controlled,|
| then they can be used to inject arbitrary code into the workflow. |
| Workflow URL: https://github.com/puppetlabs/bolt- |
| vanagon/blob/main/.github/workflows/snyk-scan.yml |
| Confidence: UNKNOWN |
|~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~|
| Job: snyk_vanagon |
| Step: Check output |
| Variables: steps.scan.outputs.vulns |
| Step If-check: steps.scan.outputs.vulns != '' |
|==============================================================================|
- Enumerating: puppetlabs/puppetlabs-peadm!
- Enumerating: puppetlabs/puppet-chocolatey-packages!
- Enumerating: puppetlabs/puppet-editor-syntax!
- Enumerating: puppetlabs/pdksync!
|==============================================================================|
| Repository Name: puppetlabs/pdksync |
| Report Type: Actions Pwn Requests |
|------------------------------------------------------------------------------|
| Workflow Name: gem_ci.yml |
| Issue Type: Pwn Request |
| Trigger(s): pull_request_target |
| Details: The workflow runs on a risky trigger and might check out the PR |
| code, see if it runs it! |
| Workflow URL: https://github.com/puppetlabs/cat-github- |
| actions/blob/main/.github/workflows/gem_ci.yml |
| Calling Workflow: ci.yml |
| Confidence: MEDIUM |
|~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~|
| Job: spec |
| Checkout Ref: ${{ github.event_name == 'pull_request_target' && |
| github.event.pull_request.head.sha || github.ref }} |
|------------------------------------------------------------------------------|
| Workflow Name: tooling_mend_ruby.yml |
| Issue Type: Pwn Request |
| Trigger(s): pull_request_target |
| Details: The workflow runs on a risky trigger and might check out the PR |
| code, see if it runs it! |
| Workflow URL: https://github.com/puppetlabs/cat-github- |
| actions/blob/main/.github/workflows/tooling_mend_ruby.yml |
| Calling Workflow: mend.yml |
| Confidence: HIGH |
|~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~|
| Job: mend |
| Checkout Ref: ${{ steps.set_ref.outputs.ref }} |
| Step If-check: EVALUATED: success() |
|==============================================================================|
- Enumerating: puppetlabs/puppet-editor-services!
|==============================================================================|
| Repository Name: puppetlabs/puppet-editor-services |
| Report Type: Actions Pwn Requests |
|------------------------------------------------------------------------------|
| Workflow Name: gem_ci.yml |
| Issue Type: Pwn Request |
| Trigger(s): pull_request_target |
| Details: The workflow runs on a risky trigger and might check out the PR |
| code, see if it runs it! |
| Workflow URL: https://github.com/puppetlabs/cat-github- |
| actions/blob/main/.github/workflows/gem_ci.yml |
| Calling Workflow: ci.yml |
| Confidence: MEDIUM |
|~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~|
| Job: spec |
| Checkout Ref: ${{ github.event_name == 'pull_request_target' && |
| github.event.pull_request.head.sha || github.ref }} |
|------------------------------------------------------------------------------|
| Workflow Name: tooling_mend_ruby.yml |
| Issue Type: Pwn Request |
| Trigger(s): pull_request_target |
| Details: The workflow runs on a risky trigger and might check out the PR |
| code, see if it runs it! |
| Workflow URL: https://github.com/puppetlabs/cat-github- |
| actions/blob/main/.github/workflows/tooling_mend_ruby.yml |
| Calling Workflow: mend.yml |
| Confidence: HIGH |
|~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~|
| Job: mend |
| Checkout Ref: ${{ steps.set_ref.outputs.ref }} |
| Step If-check: EVALUATED: success() |
|==============================================================================|
- Enumerating: puppetlabs/ref_arch_setup!
- Enumerating: puppetlabs/puppetlabs-zone_core!
- Enumerating: puppetlabs/puppetlabs-bolt_shim!
- Enumerating: puppetlabs/puppetlabs-puppet_metrics_collector!
- Enumerating: puppetlabs/puppetlabs-mailalias_core!
- Enumerating: puppetlabs/encrypted_backup!
- Enumerating: puppetlabs/puppetlabs-testing!
|==============================================================================|
| Repository Name: puppetlabs/puppetlabs-testing |
| Report Type: Actions Pwn Requests |
|------------------------------------------------------------------------------|
| Workflow Name: mend_ruby.yml |
| Issue Type: Pwn Request |
| Trigger(s): pull_request_target |
| Details: The workflow runs on a risky trigger and might check out the PR |
| code, see if it runs it! |
| Workflow URL: https://github.com/puppetlabs/cat-github- |
| actions/blob/main/.github/workflows/mend_ruby.yml |
| Calling Workflow: mend.yml |
| Confidence: HIGH |
|~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~|
| Job: mend |
| Checkout Ref: ${{ steps.set_ref.outputs.ref }} |
| Step If-check: EVALUATED: success() |
|==============================================================================|
- Enumerating: puppetlabs/prtg_push!
- Enumerating: puppetlabs/puppetlabs-azure_arm!
- Enumerating: puppetlabs/puppetlabs-zfs_core!
- Enumerating: puppetlabs/pe_support_kb_task_templates!
- Enumerating: puppetlabs/device_manager!
|==============================================================================|
| Repository Name: puppetlabs/device_manager |
| Report Type: Actions Pwn Requests |
|------------------------------------------------------------------------------|
| Workflow Name: mend_ruby.yml |
| Issue Type: Pwn Request |
| Trigger(s): pull_request_target |
| Details: The workflow runs on a risky trigger and might check out the PR |
| code, see if it runs it! |
| Workflow URL: https://github.com/puppetlabs/cat-github- |
| actions/blob/main/.github/workflows/mend_ruby.yml |
| Calling Workflow: mend.yml |
| Confidence: HIGH |
|~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~|
| Job: mend |
| Checkout Ref: ${{ steps.set_ref.outputs.ref }} |
| Step If-check: EVALUATED: success() |
|==============================================================================|
- Enumerating: puppetlabs/puppet-vra_puppet_plugin_prep!
- Enumerating: puppetlabs/puppetlabs-panos!
- Enumerating: puppetlabs/puppetlabs-selinux_core!
- Enumerating: puppetlabs/kreamlet!
- Enumerating: puppetlabs/puppetserver-ca-cli!
- Enumerating: puppetlabs/puppetlabs-facts!
- Enumerating: puppetlabs/homebrew-puppet!
- Enumerating: puppetlabs/puppetlabs-cd4pe!
- Enumerating: puppetlabs/puppetlabs-sshkeys_core!
- Enumerating: puppetlabs/puppet-community-mvp!
- Enumerating: puppetlabs/docs-archive!
- Enumerating: puppetlabs/puppetlabs-augeas_core!
- Enumerating: puppetlabs/puppetlabs-yumrepo_core!
- Enumerating: puppetlabs/puppetlabs-host_core!
- Enumerating: puppetlabs/puppetlabs-mount_core!
- Enumerating: puppetlabs/puppetlabs-cron_core!
- Enumerating: puppetlabs/pupperware!
- Enumerating: puppetlabs/courseware-lms-gswp-cr!
- Enumerating: puppetlabs/errawr-go!
- Enumerating: puppetlabs/errawr-gen!
- Enumerating: puppetlabs/puppet-dev-tools!
- Enumerating: puppetlabs/puppetlabs-cd4pe_tests!
- Enumerating: puppetlabs/puppet_litmus!
|==============================================================================|
| Repository Name: puppetlabs/puppet_litmus |
| Report Type: Actions Pwn Requests |
|------------------------------------------------------------------------------|
| Workflow Name: gem_ci.yml |
| Issue Type: Pwn Request |
| Trigger(s): pull_request_target |
| Details: The workflow runs on a risky trigger and might check out the PR |
| code, see if it runs it! |
| Workflow URL: https://github.com/puppetlabs/cat-github- |
| actions/blob/main/.github/workflows/gem_ci.yml |
| Calling Workflow: ci.yml |
| Confidence: MEDIUM |
|~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~|
| Job: spec |
| Checkout Ref: ${{ github.event_name == 'pull_request_target' && |
| github.event.pull_request.head.sha || github.ref }} |
|------------------------------------------------------------------------------|
| Workflow Name: tooling_mend_ruby.yml |
| Issue Type: Pwn Request |
| Trigger(s): pull_request_target |
| Details: The workflow runs on a risky trigger and might check out the PR |
| code, see if it runs it! |
| Workflow URL: https://github.com/puppetlabs/cat-github- |
| actions/blob/main/.github/workflows/tooling_mend_ruby.yml |
| Calling Workflow: mend.yml |
| Confidence: HIGH |
|~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~|
| Job: mend |
| Checkout Ref: ${{ steps.set_ref.outputs.ref }} |
| Step If-check: EVALUATED: success() |
|==============================================================================|
- Enumerating: puppetlabs/puppetlabs-apply_helpers!
- Enumerating: puppetlabs/contributor-summit-project!
- Enumerating: puppetlabs/puppetlabs-splunk_hec!
- Enumerating: puppetlabs/TA-puppet-report-viewer!
- Enumerating: puppetlabs/provision!
|==============================================================================|
| Repository Name: puppetlabs/provision |
| Report Type: Actions Pwn Requests |
|------------------------------------------------------------------------------|
| Workflow Name: tooling_mend_ruby.yml |
| Issue Type: Pwn Request |
| Trigger(s): pull_request_target |
| Details: The workflow runs on a risky trigger and might check out the PR |
| code, see if it runs it! |
| Workflow URL: https://github.com/puppetlabs/cat-github- |
| actions/blob/main/.github/workflows/tooling_mend_ruby.yml |
| Calling Workflow: mend.yml |
| Confidence: HIGH |
|~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~|
| Job: mend |
| Checkout Ref: ${{ steps.set_ref.outputs.ref }} |
| Step If-check: EVALUATED: success() |
|==============================================================================|
- Enumerating: puppetlabs/puppetlabs-ruby_task_helper!
- Enumerating: puppetlabs/puppetlabs-python_task_helper!
- Enumerating: puppetlabs/pe_tech_check!
- Enumerating: puppetlabs/puppet-community-rangefinder!
- Enumerating: puppetlabs/ace!
- Enumerating: puppetlabs/puppetlabs-test_device!
- Enumerating: puppetlabs/puppet-community-rangefinder-webhook!
- Enumerating: puppetlabs/litmusimage!
- Enumerating: puppetlabs/tig-demo!
- Enumerating: puppetlabs/.github!
- Enumerating: puppetlabs/auth-client!
- Enumerating: puppetlabs/beerboard!
- Enumerating: puppetlabs/design-system!
- Enumerating: puppetlabs/PIE_tools!
[!] Workflow pie_tools.yml was invalid!
- Enumerating: puppetlabs/puppetlabs-powershell_task_helper!
- Enumerating: puppetlabs/analytics!
- Enumerating: puppetlabs/bolt-project!
- Enumerating: puppetlabs/posh-bolt!
- Enumerating: puppetlabs/puppet_ciamohe!
- Enumerating: puppetlabs/clj-shell-utils!
- Enumerating: puppetlabs/helmctx!
- Enumerating: puppetlabs/pdk-docker!
- Enumerating: puppetlabs/hacktoberfest!
- Enumerating: puppetlabs/puppetlabs-azure_inventory!
- Enumerating: puppetlabs/ruby-pwsh!
|==============================================================================|
| Repository Name: puppetlabs/ruby-pwsh |
| Report Type: Actions Pwn Requests |
|------------------------------------------------------------------------------|
| Workflow Name: gem_ci.yml |
| Issue Type: Pwn Request |
| Trigger(s): pull_request_target |
| Details: The workflow runs on a risky trigger and might check out the PR |
| code, see if it runs it! |
| Workflow URL: https://github.com/puppetlabs/cat-github- |
| actions/blob/main/.github/workflows/gem_ci.yml |
| Calling Workflow: ci.yml |
| Confidence: MEDIUM |
|~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~|
| Job: spec |
| Checkout Ref: ${{ github.event_name == 'pull_request_target' && |
| github.event.pull_request.head.sha || github.ref }} |
|------------------------------------------------------------------------------|
| Workflow Name: tooling_mend_ruby.yml |
| Issue Type: Pwn Request |
| Trigger(s): pull_request_target |
| Details: The workflow runs on a risky trigger and might check out the PR |
| code, see if it runs it! |
| Workflow URL: https://github.com/puppetlabs/cat-github- |
| actions/blob/main/.github/workflows/tooling_mend_ruby.yml |
| Calling Workflow: mend.yml |
| Confidence: HIGH |
|~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~|
| Job: mend |
| Checkout Ref: ${{ steps.set_ref.outputs.ref }} |
| Step If-check: EVALUATED: success() |
|==============================================================================|
- Enumerating: puppetlabs/cdpe-test-control-repo!
- Enumerating: puppetlabs/puppetlabs-cd4pe_deployments!
- Enumerating: puppetlabs/vault-plugin-secrets-oauthapp!
- Enumerating: puppetlabs/puppetserver-helm-chart!
- Enumerating: puppetlabs/puppetlabs-terraform!
- Enumerating: puppetlabs/puppetlabs-vault!
- Enumerating: puppetlabs/puppetlabs-aws_inventory!
- Enumerating: puppetlabs/relay-sdk-go!
- Enumerating: puppetlabs/puppetlabs-yaml!
- Enumerating: puppetlabs/puppetlabs-ruby_plugin_helper!
- Enumerating: puppetlabs/dataops-pipeline-tools!
- Enumerating: puppetlabs/facter-acceptance!
- Enumerating: puppetlabs/peadm-bolt-project!
- Enumerating: puppetlabs/puppetlabs-pecdm!
- Enumerating: puppetlabs/preupgrade_check!
- Enumerating: puppetlabs/pmc_miller!
- Enumerating: puppetlabs/dropsonde!
- Enumerating: puppetlabs/terraform-google-pe_arch!
- Enumerating: puppetlabs/puppetlabs-minimum_version!
- Enumerating: puppetlabs/puppetlabs-env_plugin!
- Enumerating: puppetlabs/puppet-modulebuilder!
|==============================================================================|
| Repository Name: puppetlabs/puppet-modulebuilder |
| Report Type: Actions Pwn Requests |
|------------------------------------------------------------------------------|
| Workflow Name: gem_ci.yml |
| Issue Type: Pwn Request |
| Trigger(s): pull_request_target |
| Details: The workflow runs on a risky trigger and might check out the PR |
| code, see if it runs it! |
| Workflow URL: https://github.com/puppetlabs/cat-github- |
| actions/blob/main/.github/workflows/gem_ci.yml |
| Calling Workflow: ci.yml |
| Confidence: MEDIUM |
|~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~|
| Job: spec |
| Checkout Ref: ${{ github.event_name == 'pull_request_target' && |
| github.event.pull_request.head.sha || github.ref }} |
|------------------------------------------------------------------------------|
| Workflow Name: tooling_mend_ruby.yml |
| Issue Type: Pwn Request |
| Trigger(s): pull_request_target |
| Details: The workflow runs on a risky trigger and might check out the PR |
| code, see if it runs it! |
| Workflow URL: https://github.com/puppetlabs/cat-github- |
| actions/blob/main/.github/workflows/tooling_mend_ruby.yml |
| Calling Workflow: mend.yml |
| Confidence: HIGH |
|~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~|
| Job: mend |
| Checkout Ref: ${{ steps.set_ref.outputs.ref }} |
| Step If-check: EVALUATED: success() |
|==============================================================================|
- Enumerating: puppetlabs/puppetlabs-cd4pe_jobs!
- Enumerating: puppetlabs/puppetlabs-dropsonde!
- Enumerating: puppetlabs/dropsonde-aggregation!
- Enumerating: puppetlabs/go-pe-client!
- Enumerating: puppetlabs/TA-puppet-alert-orchestrator!
- Enumerating: puppetlabs/terraform-aws-pe_arch!
- Enumerating: puppetlabs/servicenow_tasks!
- Enumerating: puppetlabs/puppetlabs-gcloud_inventory!
- Enumerating: puppetlabs/relay-workflows!
- Enumerating: puppetlabs/puppetlabs-pkcs7!
- Enumerating: puppetlabs/pe_patch!
- Enumerating: puppetlabs/puppetlabs-servicenow_cmdb_integration!
- Enumerating: puppetlabs/relay-docs!
- Enumerating: puppetlabs/winrm_security!
- Enumerating: puppetlabs/go-cd4pe-client!
- Enumerating: puppetlabs/puppetlabs-pe_quick_data!
- Enumerating: puppetlabs/bolt-tig-stack!
- Enumerating: puppetlabs/litmus!
- Enumerating: puppetlabs/relay-sdk-python!
- Enumerating: puppetlabs/se_control_2020!
- Enumerating: puppetlabs/puppetlabs-servicenow_reporting_integration!
- Enumerating: puppetlabs/relay-helm-ambassador-knative!
- Enumerating: puppetlabs/bolt-getting-started!
- Enumerating: puppetlabs/puppetlabs-servicenow_change_requests!
- Enumerating: puppetlabs/relay-rfcs!
- Enumerating: puppetlabs/scavenger-hunt-instructions!
- Enumerating: puppetlabs/puppetlabs-patching_as_code!
- Enumerating: puppetlabs/education-control-repo!
- Enumerating: puppetlabs/tlser!
- Enumerating: puppetlabs/bolt-examples!
- Enumerating: puppetlabs/pxp-agent-vanagon!
- Enumerating: puppetlabs/pltraining-apache!
- Enumerating: puppetlabs/courseware-lms-lab-downloads!
- Enumerating: puppetlabs/puppetlabs-http_request!
- Enumerating: puppetlabs/dellemc-powerstore!
- Enumerating: puppetlabs/relaysh-docker-update-workflow!
- Enumerating: puppetlabs/puppetlabs-pe_event_forwarding!
- Enumerating: puppetlabs/bolt-waypoint-plugin!
- Enumerating: puppetlabs/puppetlabs-secure_env_vars!
- Enumerating: puppetlabs/relay-pls!
- Enumerating: puppetlabs/go-libs!
- Enumerating: puppetlabs/puppetlabs-puppet_operations_appliance!
- Enumerating: puppetlabs/leg!
- Enumerating: puppetlabs/community!
- Enumerating: puppetlabs/bunsen!
- Enumerating: puppetlabs/abide_dev_utils!
- Enumerating: puppetlabs/pe-sdk-go!
- Enumerating: puppetlabs/opv!
- Enumerating: puppetlabs/puppetlabs-sccm!
- Enumerating: puppetlabs/devx!
- Enumerating: puppetlabs/baker-round!
- Enumerating: puppetlabs/terraform-azure-pe_arch!
- Enumerating: puppetlabs/aws-hol-repo!
- Enumerating: puppetlabs/gettingstartedwb!
- Enumerating: puppetlabs/relay-services!
- Enumerating: puppetlabs/puppetlabs-bash_task_helper!
- Enumerating: puppetlabs/install-puppet!
- Enumerating: puppetlabs/puppetlabs-pam_firewall!
- Enumerating: puppetlabs/learn-to-be-a-puppet-engineer!
- Enumerating: puppetlabs/relay-client-go!
- Enumerating: puppetlabs/puppetlabs-pam_tools!
- Enumerating: puppetlabs/security-snyk-vanagon-action!
- Enumerating: puppetlabs/security-snyk-clojure-action!
- Enumerating: puppetlabs/pct-test-template-01!
- Enumerating: puppetlabs/pct-test-template-02!
- Enumerating: puppetlabs/influxdb!
- Enumerating: puppetlabs/kmo-meta-control-repo!
- Enumerating: puppetlabs/puppetlabs-pe_status_check!
- Enumerating: puppetlabs/diagrams-net-libraries!
- Enumerating: puppetlabs/puppet-data-service!
- Enumerating: puppetlabs/puppet-sneakernet!
- Enumerating: puppetlabs/fantastic-adventure!
- Enumerating: puppetlabs/vmpooler-provider-vsphere!
- Enumerating: puppetlabs/vmpooler-deployment!
- Enumerating: puppetlabs/vmpooler-provider-gce!
- Enumerating: puppetlabs/prm-test-tool-01!
- Enumerating: puppetlabs/prm-test-tool-02!
- Enumerating: puppetlabs/puppetlabs-puppet_data_service!
- Enumerating: puppetlabs/log4jscanner!
- Enumerating: puppetlabs/puppetlabs-data-entitlement!
- Enumerating: puppetlabs/denmark!
- Enumerating: puppetlabs/kmo-cd4pe-scripts!
- Enumerating: puppetlabs/kubectl-ran!
- Enumerating: puppetlabs/kmo-4-6-meta-repo!
- Enumerating: puppetlabs/language-style-guide!
- Enumerating: puppetlabs/puppet_operational_dashboards!
- Enumerating: puppetlabs/kmo-501-control-repo!
- Enumerating: puppetlabs/community-labeller!
- Enumerating: puppetlabs/pds-integration-control-repo!
- Enumerating: puppetlabs/kmo-601-nginx!
- Enumerating: puppetlabs/kmo-601-control-repo!
- Enumerating: puppetlabs/vmpooler-provider-ec2!
- Enumerating: puppetlabs/repo_housekeeper!
- Enumerating: puppetlabs/cat-team-github-metrics!
- Enumerating: puppetlabs/cat-github-actions!
- Enumerating: puppetlabs/puppet-lint-check_unsafe_interpolations!
|==============================================================================|
| Repository Name: puppetlabs/puppet-lint-check_unsafe_interpolations |
| Report Type: Actions Pwn Requests |
|------------------------------------------------------------------------------|
| Workflow Name: gem_ci.yml |
| Issue Type: Pwn Request |
| Trigger(s): pull_request_target |
| Details: The workflow runs on a risky trigger and might check out the PR |
| code, see if it runs it! |
| Workflow URL: https://github.com/puppetlabs/cat-github- |
| actions/blob/main/.github/workflows/gem_ci.yml |
| Calling Workflow: ci.yaml |
| Confidence: MEDIUM |
|~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~|
| Job: spec |
| Checkout Ref: ${{ github.event_name == 'pull_request_target' && |
| github.event.pull_request.head.sha || github.ref }} |
|==============================================================================|
- Enumerating: puppetlabs/cloud-chaos-webinar!
- Enumerating: puppetlabs/puppet-approved-modules!
- Enumerating: puppetlabs/puppetlabs-puppet_bolt_server!
- Enumerating: puppetlabs/debian_codename!
- Enumerating: puppetlabs/vmpooler-dns-gcp!
- Enumerating: puppetlabs/puppet-pson!
- Enumerating: puppetlabs/puppet_module_metadata!
- Enumerating: puppetlabs/trapperkeeper-webserver-jetty10!
- Enumerating: puppetlabs/phoenix-github-actions!
- Enumerating: puppetlabs/pdk-rubocop!
|==============================================================================|
| Repository Name: puppetlabs/pdk-rubocop |
| Report Type: Actions Pwn Requests |
|------------------------------------------------------------------------------|
| Workflow Name: tooling_mend_ruby.yml |
| Issue Type: Pwn Request |
| Trigger(s): pull_request_target |
| Details: The workflow runs on a risky trigger and might check out the PR |
| code, see if it runs it! |
| Workflow URL: https://github.com/puppetlabs/cat-github- |
| actions/blob/main/.github/workflows/tooling_mend_ruby.yml |
| Calling Workflow: mend.yml |
| Confidence: HIGH |
|~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~|
| Job: mend |
| Checkout Ref: ${{ steps.set_ref.outputs.ref }} |
| Step If-check: EVALUATED: success() |
|==============================================================================|
- Enumerating: puppetlabs/pdk-test!
- Enumerating: puppetlabs/openssl-fips!
- Enumerating: puppetlabs/May-The-Source-Be-With-You!
- Enumerating: puppetlabs/foss-license-report!
- Enumerating: puppetlabs/step-perforce-plugins!
- Enumerating: puppetlabs/clojars-puppetlabs-jenkins!
- Enumerating: puppetlabs/puppet-dev-boxes!
- Enumerating: puppetlabs/puppet-commit!
- Enumerating: puppetlabs/cem_workflows!
- Enumerating: puppetlabs/kmo_provision_pe!
- Enumerating: puppetlabs/puppetlabs-provision!
- Enumerating: puppetlabs/release-engineering-repo-standards!
- Enumerating: puppetlabs/cem_issues!
- Enumerating: puppetlabs/forge-standards!
- Enumerating: puppetlabs/puppet-enterprise_issues!
- Enumerating: puppetlabs/forge_issues!
- Enumerating: puppetlabs/pe_501_hello_world_lab_3!
- Enumerating: puppetlabs/pe_501_hello_world_lab_2!
- Enumerating: puppetlabs/pe_501_hello_world_lab_1!
- Enumerating: puppetlabs/pe_501_control_repo_lab_2!
- Enumerating: puppetlabs/pe_501_control_repo_lab_1!
- Enumerating: puppetlabs/xzscanner!
- Enumerating: puppetlabs/puppetfile-check!
- Enumerating: puppetlabs/puppetlabs-puppet_status_check!
|==============================================================================|
| Repository Name: puppetlabs/puppetlabs-puppet_status_check |
| Report Type: Actions Pwn Requests |
|------------------------------------------------------------------------------|
| Workflow Name: mend_ruby.yml |
| Issue Type: Pwn Request |
| Trigger(s): pull_request_target |
| Details: The workflow runs on a risky trigger and might check out the PR |
| code, see if it runs it! |
| Workflow URL: https://github.com/puppetlabs/cat-github- |
| actions/blob/main/.github/workflows/mend_ruby.yml |
| Calling Workflow: mend.yml |
| Confidence: HIGH |
|~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~|
| Job: mend |
| Checkout Ref: ${{ steps.set_ref.outputs.ref }} |
| Step If-check: EVALUATED: success() |
|==============================================================================|
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment