Created
June 12, 2024 21:45
-
-
Save AdnaneKhan/ce8b032ec825fff402a51dc8519351d4 to your computer and use it in GitHub Desktop.
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
[+] The authenticated user is: RampagingSloth | |
[+] The GitHub Classic PAT has the following scopes: gist, read:org, repo, workflow | |
[+] Enumerating the puppetlabs organization! | |
[!] The user has only public access! | |
[+] About to enumerate 561 repos within the puppetlabs organization! | |
[+] Querying and caching workflow YAML files! | |
[+] Querying 0 out of 6 batches! | |
[+] Querying 1 out of 6 batches! | |
[+] Querying 2 out of 6 batches! | |
[+] Querying 3 out of 6 batches! | |
[+] Querying 4 out of 6 batches! | |
[+] Querying 5 out of 6 batches! | |
- Enumerating: puppetlabs/puppetlabs-concat! | |
|==============================================================================| | |
| Repository Name: puppetlabs/puppetlabs-concat | | |
| Report Type: Actions Pwn Requests | | |
|------------------------------------------------------------------------------| | |
| Workflow Name: mend_ruby.yml | | |
| Issue Type: Pwn Request | | |
| Trigger(s): pull_request_target | | |
| Details: The workflow runs on a risky trigger and might check out the PR | | |
| code, see if it runs it! | | |
| Workflow URL: https://github.com/puppetlabs/cat-github- | | |
| actions/blob/main/.github/workflows/mend_ruby.yml | | |
| Calling Workflow: mend.yml | | |
| Confidence: HIGH | | |
|~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~| | |
| Job: mend | | |
| Checkout Ref: ${{ steps.set_ref.outputs.ref }} | | |
| Step If-check: EVALUATED: success() | | |
|==============================================================================| | |
- Enumerating: puppetlabs/puppetlabs-apache! | |
|==============================================================================| | |
| Repository Name: puppetlabs/puppetlabs-apache | | |
| Report Type: Actions Pwn Requests | | |
|------------------------------------------------------------------------------| | |
| Workflow Name: mend_ruby.yml | | |
| Issue Type: Pwn Request | | |
| Trigger(s): pull_request_target | | |
| Details: The workflow runs on a risky trigger and might check out the PR | | |
| code, see if it runs it! | | |
| Workflow URL: https://github.com/puppetlabs/cat-github- | | |
| actions/blob/main/.github/workflows/mend_ruby.yml | | |
| Calling Workflow: mend.yml | | |
| Confidence: HIGH | | |
|~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~| | |
| Job: mend | | |
| Checkout Ref: ${{ steps.set_ref.outputs.ref }} | | |
| Step If-check: EVALUATED: success() | | |
|==============================================================================| | |
- Enumerating: puppetlabs/puppet! | |
- Enumerating: puppetlabs/puppet-docs! | |
- Enumerating: puppetlabs/facter! | |
- Enumerating: puppetlabs/puppetlabs-lvm! | |
|==============================================================================| | |
| Repository Name: puppetlabs/puppetlabs-lvm | | |
| Report Type: Actions Pwn Requests | | |
|------------------------------------------------------------------------------| | |
| Workflow Name: module_ci.yml | | |
| Issue Type: Pwn Request | | |
| Trigger(s): pull_request_target | | |
| Details: The workflow runs on a risky trigger and might check out the PR | | |
| code, see if it runs it! | | |
| Workflow URL: https://github.com/puppetlabs/cat-github- | | |
| actions/blob/main/.github/workflows/module_ci.yml | | |
| Calling Workflow: ci.yml | | |
| Confidence: MEDIUM | | |
|~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~| | |
| Job: setup_matrix | | |
| Checkout Ref: ${{ github.event.pull_request.head.sha }} | | |
|~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~| | |
| Job: spec | | |
| Checkout Ref: ${{ github.event.pull_request.head.sha }} | | |
|------------------------------------------------------------------------------| | |
| Workflow Name: ci.yml | | |
| Issue Type: Pwn Request | | |
| Trigger(s): pull_request_target | | |
| Details: The workflow runs on a risky trigger and might check out the PR | | |
| code, see if it runs it! | | |
| Workflow URL: https://github.com/puppetlabs/puppetlabs- | | |
| lvm/blob/main/.github/workflows/ci.yml | | |
| Confidence: MEDIUM | | |
|~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~| | |
| Job: setup_matrix | | |
| Checkout Ref: ${{ github.event.pull_request.head.sha }} | | |
|~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~| | |
| Job: Acceptance | | |
| Checkout Ref: ${{ github.event.pull_request.head.sha }} | | |
|------------------------------------------------------------------------------| | |
| Workflow Name: mend_ruby.yml | | |
| Issue Type: Pwn Request | | |
| Trigger(s): pull_request_target | | |
| Details: The workflow runs on a risky trigger and might check out the PR | | |
| code, see if it runs it! | | |
| Workflow URL: https://github.com/puppetlabs/cat-github- | | |
| actions/blob/main/.github/workflows/mend_ruby.yml | | |
| Calling Workflow: mend.yml | | |
| Confidence: HIGH | | |
|~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~| | |
| Job: mend | | |
| Checkout Ref: ${{ steps.set_ref.outputs.ref }} | | |
| Step If-check: EVALUATED: success() | | |
|==============================================================================| | |
- Enumerating: puppetlabs/puppetlabs-firewall! | |
|==============================================================================| | |
| Repository Name: puppetlabs/puppetlabs-firewall | | |
| Report Type: Actions Pwn Requests | | |
|------------------------------------------------------------------------------| | |
| Workflow Name: mend_ruby.yml | | |
| Issue Type: Pwn Request | | |
| Trigger(s): pull_request_target | | |
| Details: The workflow runs on a risky trigger and might check out the PR | | |
| code, see if it runs it! | | |
| Workflow URL: https://github.com/puppetlabs/cat-github- | | |
| actions/blob/main/.github/workflows/mend_ruby.yml | | |
| Calling Workflow: mend.yml | | |
| Confidence: HIGH | | |
|~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~| | |
| Job: mend | | |
| Checkout Ref: ${{ steps.set_ref.outputs.ref }} | | |
| Step If-check: EVALUATED: success() | | |
|==============================================================================| | |
- Enumerating: puppetlabs/puppetlabs-stdlib! | |
|==============================================================================| | |
| Repository Name: puppetlabs/puppetlabs-stdlib | | |
| Report Type: Actions Pwn Requests | | |
|------------------------------------------------------------------------------| | |
| Workflow Name: mend_ruby.yml | | |
| Issue Type: Pwn Request | | |
| Trigger(s): pull_request_target | | |
| Details: The workflow runs on a risky trigger and might check out the PR | | |
| code, see if it runs it! | | |
| Workflow URL: https://github.com/puppetlabs/cat-github- | | |
| actions/blob/main/.github/workflows/mend_ruby.yml | | |
| Calling Workflow: mend.yml | | |
| Confidence: HIGH | | |
|~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~| | |
| Job: mend | | |
| Checkout Ref: ${{ steps.set_ref.outputs.ref }} | | |
| Step If-check: EVALUATED: success() | | |
|==============================================================================| | |
- Enumerating: puppetlabs/puppetlabs-java! | |
|==============================================================================| | |
| Repository Name: puppetlabs/puppetlabs-java | | |
| Report Type: Actions Pwn Requests | | |
|------------------------------------------------------------------------------| | |
| Workflow Name: mend_ruby.yml | | |
| Issue Type: Pwn Request | | |
| Trigger(s): pull_request_target | | |
| Details: The workflow runs on a risky trigger and might check out the PR | | |
| code, see if it runs it! | | |
| Workflow URL: https://github.com/puppetlabs/cat-github- | | |
| actions/blob/main/.github/workflows/mend_ruby.yml | | |
| Calling Workflow: mend.yml | | |
| Confidence: HIGH | | |
|~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~| | |
| Job: mend | | |
| Checkout Ref: ${{ steps.set_ref.outputs.ref }} | | |
| Step If-check: EVALUATED: success() | | |
|==============================================================================| | |
- Enumerating: puppetlabs/puppetlabs-mysql! | |
|==============================================================================| | |
| Repository Name: puppetlabs/puppetlabs-mysql | | |
| Report Type: Actions Pwn Requests | | |
|------------------------------------------------------------------------------| | |
| Workflow Name: mend_ruby.yml | | |
| Issue Type: Pwn Request | | |
| Trigger(s): pull_request_target | | |
| Details: The workflow runs on a risky trigger and might check out the PR | | |
| code, see if it runs it! | | |
| Workflow URL: https://github.com/puppetlabs/cat-github- | | |
| actions/blob/main/.github/workflows/mend_ruby.yml | | |
| Calling Workflow: mend.yml | | |
| Confidence: HIGH | | |
|~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~| | |
| Job: mend | | |
| Checkout Ref: ${{ steps.set_ref.outputs.ref }} | | |
| Step If-check: EVALUATED: success() | | |
|==============================================================================| | |
- Enumerating: puppetlabs/hiera! | |
- Enumerating: puppetlabs/puppetlabs-ntp! | |
|==============================================================================| | |
| Repository Name: puppetlabs/puppetlabs-ntp | | |
| Report Type: Actions Pwn Requests | | |
|------------------------------------------------------------------------------| | |
| Workflow Name: mend_ruby.yml | | |
| Issue Type: Pwn Request | | |
| Trigger(s): pull_request_target | | |
| Details: The workflow runs on a risky trigger and might check out the PR | | |
| code, see if it runs it! | | |
| Workflow URL: https://github.com/puppetlabs/cat-github- | | |
| actions/blob/main/.github/workflows/mend_ruby.yml | | |
| Calling Workflow: mend.yml | | |
| Confidence: HIGH | | |
|~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~| | |
| Job: mend | | |
| Checkout Ref: ${{ steps.set_ref.outputs.ref }} | | |
| Step If-check: EVALUATED: success() | | |
|==============================================================================| | |
- Enumerating: puppetlabs/education-builds! | |
- Enumerating: puppetlabs/puppetdb! | |
- Enumerating: puppetlabs/puppetlabs_spec_helper! | |
|==============================================================================| | |
| Repository Name: puppetlabs/puppetlabs_spec_helper | | |
| Report Type: Actions Pwn Requests | | |
|------------------------------------------------------------------------------| | |
| Workflow Name: gem_ci.yml | | |
| Issue Type: Pwn Request | | |
| Trigger(s): pull_request_target | | |
| Details: The workflow runs on a risky trigger and might check out the PR | | |
| code, see if it runs it! | | |
| Workflow URL: https://github.com/puppetlabs/cat-github- | | |
| actions/blob/main/.github/workflows/gem_ci.yml | | |
| Calling Workflow: ci.yml | | |
| Confidence: MEDIUM | | |
|~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~| | |
| Job: spec | | |
| Checkout Ref: ${{ github.event_name == 'pull_request_target' && | | |
| github.event.pull_request.head.sha || github.ref }} | | |
|------------------------------------------------------------------------------| | |
| Workflow Name: tooling_mend_ruby.yml | | |
| Issue Type: Pwn Request | | |
| Trigger(s): pull_request_target | | |
| Details: The workflow runs on a risky trigger and might check out the PR | | |
| code, see if it runs it! | | |
| Workflow URL: https://github.com/puppetlabs/cat-github- | | |
| actions/blob/main/.github/workflows/tooling_mend_ruby.yml | | |
| Calling Workflow: mend.yml | | |
| Confidence: HIGH | | |
|~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~| | |
| Job: mend | | |
| Checkout Ref: ${{ steps.set_ref.outputs.ref }} | | |
| Step If-check: EVALUATED: success() | | |
|==============================================================================| | |
- Enumerating: puppetlabs/puppetlabs-sshkeys! | |
- Enumerating: puppetlabs/puppetlabs-motd! | |
|==============================================================================| | |
| Repository Name: puppetlabs/puppetlabs-motd | | |
| Report Type: Actions Pwn Requests | | |
|------------------------------------------------------------------------------| | |
| Workflow Name: mend_ruby.yml | | |
| Issue Type: Pwn Request | | |
| Trigger(s): pull_request_target | | |
| Details: The workflow runs on a risky trigger and might check out the PR | | |
| code, see if it runs it! | | |
| Workflow URL: https://github.com/puppetlabs/cat-github- | | |
| actions/blob/main/.github/workflows/mend_ruby.yml | | |
| Calling Workflow: mend.yml | | |
| Confidence: HIGH | | |
|~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~| | |
| Job: mend | | |
| Checkout Ref: ${{ steps.set_ref.outputs.ref }} | | |
| Step If-check: EVALUATED: success() | | |
|==============================================================================| | |
- Enumerating: puppetlabs/puppetlabs-rsync! | |
- Enumerating: puppetlabs/puppetlabs-registry! | |
|==============================================================================| | |
| Repository Name: puppetlabs/puppetlabs-registry | | |
| Report Type: Actions Pwn Requests | | |
|------------------------------------------------------------------------------| | |
| Workflow Name: mend_ruby.yml | | |
| Issue Type: Pwn Request | | |
| Trigger(s): pull_request_target | | |
| Details: The workflow runs on a risky trigger and might check out the PR | | |
| code, see if it runs it! | | |
| Workflow URL: https://github.com/puppetlabs/cat-github- | | |
| actions/blob/main/.github/workflows/mend_ruby.yml | | |
| Calling Workflow: mend.yml | | |
| Confidence: HIGH | | |
|~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~| | |
| Job: mend | | |
| Checkout Ref: ${{ steps.set_ref.outputs.ref }} | | |
| Step If-check: EVALUATED: success() | | |
|==============================================================================| | |
- Enumerating: puppetlabs/puppetlabs-postgresql! | |
|==============================================================================| | |
| Repository Name: puppetlabs/puppetlabs-postgresql | | |
| Report Type: Actions Pwn Requests | | |
|------------------------------------------------------------------------------| | |
| Workflow Name: mend_ruby.yml | | |
| Issue Type: Pwn Request | | |
| Trigger(s): pull_request_target | | |
| Details: The workflow runs on a risky trigger and might check out the PR | | |
| code, see if it runs it! | | |
| Workflow URL: https://github.com/puppetlabs/cat-github- | | |
| actions/blob/main/.github/workflows/mend_ruby.yml | | |
| Calling Workflow: mend.yml | | |
| Confidence: HIGH | | |
|~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~| | |
| Job: mend | | |
| Checkout Ref: ${{ steps.set_ref.outputs.ref }} | | |
| Step If-check: EVALUATED: success() | | |
|==============================================================================| | |
- Enumerating: puppetlabs/puppetlabs-java_ks! | |
|==============================================================================| | |
| Repository Name: puppetlabs/puppetlabs-java_ks | | |
| Report Type: Actions Pwn Requests | | |
|------------------------------------------------------------------------------| | |
| Workflow Name: mend_ruby.yml | | |
| Issue Type: Pwn Request | | |
| Trigger(s): pull_request_target | | |
| Details: The workflow runs on a risky trigger and might check out the PR | | |
| code, see if it runs it! | | |
| Workflow URL: https://github.com/puppetlabs/cat-github- | | |
| actions/blob/main/.github/workflows/mend_ruby.yml | | |
| Calling Workflow: mend.yml | | |
| Confidence: HIGH | | |
|~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~| | |
| Job: mend | | |
| Checkout Ref: ${{ steps.set_ref.outputs.ref }} | | |
| Step If-check: EVALUATED: success() | | |
|==============================================================================| | |
- Enumerating: puppetlabs/showoff! | |
- Enumerating: puppetlabs/puppetlabs-xinetd! | |
- Enumerating: puppetlabs/puppetlabs-puppetdb! | |
|==============================================================================| | |
| Repository Name: puppetlabs/puppetlabs-puppetdb | | |
| Report Type: Actions Pwn Requests | | |
|------------------------------------------------------------------------------| | |
| Workflow Name: mend_ruby.yml | | |
| Issue Type: Pwn Request | | |
| Trigger(s): pull_request_target | | |
| Details: The workflow runs on a risky trigger and might check out the PR | | |
| code, see if it runs it! | | |
| Workflow URL: https://github.com/puppetlabs/cat-github-actions/blob/release- | | |
| any-tag/.github/workflows/mend_ruby.yml | | |
| Calling Workflow: mend.yml | | |
| Confidence: HIGH | | |
|~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~| | |
| Job: mend | | |
| Checkout Ref: ${{ steps.set_ref.outputs.ref }} | | |
| Step If-check: EVALUATED: success() | | |
|==============================================================================| | |
- Enumerating: puppetlabs/puppetlabs-inifile! | |
|==============================================================================| | |
| Repository Name: puppetlabs/puppetlabs-inifile | | |
| Report Type: Actions Pwn Requests | | |
|------------------------------------------------------------------------------| | |
| Workflow Name: mend_ruby.yml | | |
| Issue Type: Pwn Request | | |
| Trigger(s): pull_request_target | | |
| Details: The workflow runs on a risky trigger and might check out the PR | | |
| code, see if it runs it! | | |
| Workflow URL: https://github.com/puppetlabs/cat-github- | | |
| actions/blob/main/.github/workflows/mend_ruby.yml | | |
| Calling Workflow: mend.yml | | |
| Confidence: HIGH | | |
|~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~| | |
| Job: mend | | |
| Checkout Ref: ${{ steps.set_ref.outputs.ref }} | | |
| Step If-check: EVALUATED: success() | | |
|==============================================================================| | |
- Enumerating: puppetlabs/puppetlabs-release! | |
- Enumerating: puppetlabs/packaging! | |
- Enumerating: puppetlabs/build-data! | |
- Enumerating: puppetlabs/r10k! | |
- Enumerating: puppetlabs/puppetlabs-powershell! | |
|==============================================================================| | |
| Repository Name: puppetlabs/puppetlabs-powershell | | |
| Report Type: Actions Pwn Requests | | |
|------------------------------------------------------------------------------| | |
| Workflow Name: mend_ruby.yml | | |
| Issue Type: Pwn Request | | |
| Trigger(s): pull_request_target | | |
| Details: The workflow runs on a risky trigger and might check out the PR | | |
| code, see if it runs it! | | |
| Workflow URL: https://github.com/puppetlabs/cat-github- | | |
| actions/blob/main/.github/workflows/mend_ruby.yml | | |
| Calling Workflow: mend.yml | | |
| Confidence: HIGH | | |
|~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~| | |
| Job: mend | | |
| Checkout Ref: ${{ steps.set_ref.outputs.ref }} | | |
| Step If-check: EVALUATED: success() | | |
|==============================================================================| | |
- Enumerating: puppetlabs/puppet-rfc! | |
- Enumerating: puppetlabs/netdev_stdlib! | |
- Enumerating: puppetlabs/puppetlabs-reboot! | |
|==============================================================================| | |
| Repository Name: puppetlabs/puppetlabs-reboot | | |
| Report Type: Actions Pwn Requests | | |
|------------------------------------------------------------------------------| | |
| Workflow Name: mend_ruby.yml | | |
| Issue Type: Pwn Request | | |
| Trigger(s): pull_request_target | | |
| Details: The workflow runs on a risky trigger and might check out the PR | | |
| code, see if it runs it! | | |
| Workflow URL: https://github.com/puppetlabs/cat-github- | | |
| actions/blob/main/.github/workflows/mend_ruby.yml | | |
| Calling Workflow: mend.yml | | |
| Confidence: HIGH | | |
|~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~| | |
| Job: mend | | |
| Checkout Ref: ${{ steps.set_ref.outputs.ref }} | | |
| Step If-check: EVALUATED: success() | | |
|==============================================================================| | |
- Enumerating: puppetlabs/puppetlabs-windows_env! | |
|==============================================================================| | |
| Repository Name: puppetlabs/puppetlabs-windows_env | | |
| Report Type: Actions Pwn Requests | | |
|------------------------------------------------------------------------------| | |
| Workflow Name: mend_ruby.yml | | |
| Issue Type: Pwn Request | | |
| Trigger(s): pull_request_target | | |
| Details: The workflow runs on a risky trigger and might check out the PR | | |
| code, see if it runs it! | | |
| Workflow URL: https://github.com/puppetlabs/cat-github- | | |
| actions/blob/main/.github/workflows/mend_ruby.yml | | |
| Calling Workflow: mend.yml | | |
| Confidence: HIGH | | |
|~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~| | |
| Job: mend | | |
| Checkout Ref: ${{ steps.set_ref.outputs.ref }} | | |
| Step If-check: EVALUATED: success() | | |
|==============================================================================| | |
- Enumerating: puppetlabs/puppetlabs-sslcertificate! | |
|==============================================================================| | |
| Repository Name: puppetlabs/puppetlabs-sslcertificate | | |
| Report Type: Actions Pwn Requests | | |
|------------------------------------------------------------------------------| | |
| Workflow Name: mend_ruby.yml | | |
| Issue Type: Pwn Request | | |
| Trigger(s): pull_request_target | | |
| Details: The workflow runs on a risky trigger and might check out the PR | | |
| code, see if it runs it! | | |
| Workflow URL: https://github.com/puppetlabs/cat-github- | | |
| actions/blob/main/.github/workflows/mend_ruby.yml | | |
| Calling Workflow: mend.yml | | |
| Confidence: HIGH | | |
|~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~| | |
| Job: mend | | |
| Checkout Ref: ${{ steps.set_ref.outputs.ref }} | | |
| Step If-check: EVALUATED: success() | | |
|==============================================================================| | |
- Enumerating: puppetlabs/puppetlabs-windows_eventlog! | |
|==============================================================================| | |
| Repository Name: puppetlabs/puppetlabs-windows_eventlog | | |
| Report Type: Actions Pwn Requests | | |
|------------------------------------------------------------------------------| | |
| Workflow Name: mend_ruby.yml | | |
| Issue Type: Pwn Request | | |
| Trigger(s): pull_request_target | | |
| Details: The workflow runs on a risky trigger and might check out the PR | | |
| code, see if it runs it! | | |
| Workflow URL: https://github.com/puppetlabs/cat-github- | | |
| actions/blob/main/.github/workflows/mend_ruby.yml | | |
| Calling Workflow: mend.yml | | |
| Confidence: HIGH | | |
|~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~| | |
| Job: mend | | |
| Checkout Ref: ${{ steps.set_ref.outputs.ref }} | | |
| Step If-check: EVALUATED: success() | | |
|==============================================================================| | |
- Enumerating: puppetlabs/vmpooler! | |
- Enumerating: puppetlabs/clj-kitchensink! | |
- Enumerating: puppetlabs/trapperkeeper! | |
- Enumerating: puppetlabs/semantic_puppet! | |
- Enumerating: puppetlabs/puppetlabs-acl! | |
|==============================================================================| | |
| Repository Name: puppetlabs/puppetlabs-acl | | |
| Report Type: Actions Pwn Requests | | |
|------------------------------------------------------------------------------| | |
| Workflow Name: mend_ruby.yml | | |
| Issue Type: Pwn Request | | |
| Trigger(s): pull_request_target | | |
| Details: The workflow runs on a risky trigger and might check out the PR | | |
| code, see if it runs it! | | |
| Workflow URL: https://github.com/puppetlabs/cat-github- | | |
| actions/blob/main/.github/workflows/mend_ruby.yml | | |
| Calling Workflow: mend.yml | | |
| Confidence: HIGH | | |
|~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~| | |
| Job: mend | | |
| Checkout Ref: ${{ steps.set_ref.outputs.ref }} | | |
| Step If-check: EVALUATED: success() | | |
|==============================================================================| | |
- Enumerating: puppetlabs/trapperkeeper-webserver-jetty9! | |
- Enumerating: puppetlabs/jvm-ssl-utils! | |
- Enumerating: puppetlabs/ruby-hocon! | |
- Enumerating: puppetlabs/ezbake! | |
- Enumerating: puppetlabs/clj-http-client! | |
- Enumerating: puppetlabs/clj-typesafe-config! | |
- Enumerating: puppetlabs/jdbc-util! | |
- Enumerating: puppetlabs/puppetserver! | |
- Enumerating: puppetlabs/puppet-specifications! | |
- Enumerating: puppetlabs/forge-ruby! | |
- Enumerating: puppetlabs/horsewhisperer! | |
- Enumerating: puppetlabs/puppetlabs-tomcat! | |
|==============================================================================| | |
| Repository Name: puppetlabs/puppetlabs-tomcat | | |
| Report Type: Actions Pwn Requests | | |
|------------------------------------------------------------------------------| | |
| Workflow Name: mend_ruby.yml | | |
| Issue Type: Pwn Request | | |
| Trigger(s): pull_request_target | | |
| Details: The workflow runs on a risky trigger and might check out the PR | | |
| code, see if it runs it! | | |
| Workflow URL: https://github.com/puppetlabs/cat-github- | | |
| actions/blob/main/.github/workflows/mend_ruby.yml | | |
| Calling Workflow: mend.yml | | |
| Confidence: HIGH | | |
|~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~| | |
| Job: mend | | |
| Checkout Ref: ${{ steps.set_ref.outputs.ref }} | | |
| Step If-check: EVALUATED: success() | | |
|==============================================================================| | |
- Enumerating: puppetlabs/harrison! | |
- Enumerating: puppetlabs/puppetlabs-sqlserver! | |
|==============================================================================| | |
| Repository Name: puppetlabs/puppetlabs-sqlserver | | |
| Report Type: Actions Pwn Requests | | |
|------------------------------------------------------------------------------| | |
| Workflow Name: module_ci.yml | | |
| Issue Type: Pwn Request | | |
| Trigger(s): pull_request_target | | |
| Details: The workflow runs on a risky trigger and might check out the PR | | |
| code, see if it runs it! | | |
| Workflow URL: https://github.com/puppetlabs/cat-github- | | |
| actions/blob/main/.github/workflows/module_ci.yml | | |
| Calling Workflow: ci.yml | | |
| Confidence: MEDIUM | | |
|~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~| | |
| Job: setup_matrix | | |
| Checkout Ref: ${{ github.event.pull_request.head.sha }} | | |
|~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~| | |
| Job: spec | | |
| Checkout Ref: ${{ github.event.pull_request.head.sha }} | | |
|------------------------------------------------------------------------------| | |
| Workflow Name: ci.yml | | |
| Issue Type: Pwn Request | | |
| Trigger(s): pull_request_target | | |
| Details: The workflow runs on a risky trigger and might check out the PR | | |
| code, see if it runs it! | | |
| Workflow URL: https://github.com/puppetlabs/puppetlabs- | | |
| sqlserver/blob/main/.github/workflows/ci.yml | | |
| Confidence: HIGH | | |
|~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~| | |
| Job: setup_matrix | | |
| Checkout Ref: ${{ github.event.pull_request.head.sha }} | | |
| Step If-check: EVALUATED: ${{ github.repository_owner == 'puppetlabs' }} | | |
|~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~| | |
| Job: Acceptance | | |
| Job If-Check: ${{ needs.setup_matrix.outputs.matrix != '{}' }} | | |
| Checkout Ref: ${{ github.event.pull_request.head.sha }} | | |
|------------------------------------------------------------------------------| | |
| Workflow Name: mend_ruby.yml | | |
| Issue Type: Pwn Request | | |
| Trigger(s): pull_request_target | | |
| Details: The workflow runs on a risky trigger and might check out the PR | | |
| code, see if it runs it! | | |
| Workflow URL: https://github.com/puppetlabs/cat-github- | | |
| actions/blob/main/.github/workflows/mend_ruby.yml | | |
| Calling Workflow: mend.yml | | |
| Confidence: HIGH | | |
|~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~| | |
| Job: mend | | |
| Checkout Ref: ${{ steps.set_ref.outputs.ref }} | | |
| Step If-check: EVALUATED: success() | | |
|==============================================================================| | |
- Enumerating: puppetlabs/icfp-2014! | |
- Enumerating: puppetlabs/clj-schema-tools! | |
- Enumerating: puppetlabs/pcp-broker! | |
- Enumerating: puppetlabs/clamps! | |
- Enumerating: puppetlabs/puppet-strings! | |
|==============================================================================| | |
| Repository Name: puppetlabs/puppet-strings | | |
| Report Type: Actions Pwn Requests | | |
|------------------------------------------------------------------------------| | |
| Workflow Name: gem_ci.yml | | |
| Issue Type: Pwn Request | | |
| Trigger(s): pull_request_target | | |
| Details: The workflow runs on a risky trigger and might check out the PR | | |
| code, see if it runs it! | | |
| Workflow URL: https://github.com/puppetlabs/cat-github- | | |
| actions/blob/main/.github/workflows/gem_ci.yml | | |
| Calling Workflow: ci.yml | | |
| Confidence: MEDIUM | | |
|~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~| | |
| Job: spec | | |
| Checkout Ref: ${{ github.event_name == 'pull_request_target' && | | |
| github.event.pull_request.head.sha || github.ref }} | | |
|------------------------------------------------------------------------------| | |
| Workflow Name: tooling_mend_ruby.yml | | |
| Issue Type: Pwn Request | | |
| Trigger(s): pull_request_target | | |
| Details: The workflow runs on a risky trigger and might check out the PR | | |
| code, see if it runs it! | | |
| Workflow URL: https://github.com/puppetlabs/cat-github- | | |
| actions/blob/main/.github/workflows/tooling_mend_ruby.yml | | |
| Calling Workflow: mend.yml | | |
| Confidence: HIGH | | |
|~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~| | |
| Job: mend | | |
| Checkout Ref: ${{ steps.set_ref.outputs.ref }} | | |
| Step If-check: EVALUATED: success() | | |
|==============================================================================| | |
- Enumerating: puppetlabs/cpp-pcp-client! | |
- Enumerating: puppetlabs/ring-middleware! | |
- Enumerating: puppetlabs/pxp-agent! | |
- Enumerating: puppetlabs/net_http_unix! | |
- Enumerating: puppetlabs/puppetfactory! | |
- Enumerating: puppetlabs/puppetlabs-hocon! | |
|==============================================================================| | |
| Repository Name: puppetlabs/puppetlabs-hocon | | |
| Report Type: Actions Pwn Requests | | |
|------------------------------------------------------------------------------| | |
| Workflow Name: mend_ruby.yml | | |
| Issue Type: Pwn Request | | |
| Trigger(s): pull_request_target | | |
| Details: The workflow runs on a risky trigger and might check out the PR | | |
| code, see if it runs it! | | |
| Workflow URL: https://github.com/puppetlabs/cat-github- | | |
| actions/blob/main/.github/workflows/mend_ruby.yml | | |
| Calling Workflow: mend.yml | | |
| Confidence: HIGH | | |
|~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~| | |
| Job: mend | | |
| Checkout Ref: ${{ steps.set_ref.outputs.ref }} | | |
| Step If-check: EVALUATED: success() | | |
|==============================================================================| | |
- Enumerating: puppetlabs/vmfloaty! | |
- Enumerating: puppetlabs/puppet-classify! | |
- Enumerating: puppetlabs/puppetlabs-transition! | |
- Enumerating: puppetlabs/puppetlabs-vsphere! | |
- Enumerating: puppetlabs/vanagon! | |
- Enumerating: puppetlabs/puppet-agent! | |
- Enumerating: puppetlabs/scooter! | |
- Enumerating: puppetlabs/puppetlabs-mount_iso! | |
|==============================================================================| | |
| Repository Name: puppetlabs/puppetlabs-mount_iso | | |
| Report Type: Actions Pwn Requests | | |
|------------------------------------------------------------------------------| | |
| Workflow Name: mend_ruby.yml | | |
| Issue Type: Pwn Request | | |
| Trigger(s): pull_request_target | | |
| Details: The workflow runs on a risky trigger and might check out the PR | | |
| code, see if it runs it! | | |
| Workflow URL: https://github.com/puppetlabs/cat-github- | | |
| actions/blob/main/.github/workflows/mend_ruby.yml | | |
| Calling Workflow: mend.yml | | |
| Confidence: HIGH | | |
|~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~| | |
| Job: mend | | |
| Checkout Ref: ${{ steps.set_ref.outputs.ref }} | | |
| Step If-check: EVALUATED: success() | | |
|==============================================================================| | |
- Enumerating: puppetlabs/dujour-version-check! | |
- Enumerating: puppetlabs/puppetlabs-ibm_installation_manager! | |
- Enumerating: puppetlabs/puppetlabs-tagmail! | |
- Enumerating: puppetlabs/leatherman! | |
- Enumerating: puppetlabs/comidi! | |
- Enumerating: puppetlabs/pltraining-userprefs! | |
- Enumerating: puppetlabs/pltraining-localrepo! | |
- Enumerating: puppetlabs/pltraining-rbac! | |
- Enumerating: puppetlabs/clj-pcp-client! | |
- Enumerating: puppetlabs/clj-pcp-common! | |
- Enumerating: puppetlabs/pcp-specifications! | |
- Enumerating: puppetlabs/trapperkeeper-status! | |
- Enumerating: puppetlabs/master_manipulator! | |
- Enumerating: puppetlabs/puppetlabs-wsus_client! | |
|==============================================================================| | |
| Repository Name: puppetlabs/puppetlabs-wsus_client | | |
| Report Type: Actions Pwn Requests | | |
|------------------------------------------------------------------------------| | |
| Workflow Name: mend_ruby.yml | | |
| Issue Type: Pwn Request | | |
| Trigger(s): pull_request_target | | |
| Details: The workflow runs on a risky trigger and might check out the PR | | |
| code, see if it runs it! | | |
| Workflow URL: https://github.com/puppetlabs/cat-github- | | |
| actions/blob/main/.github/workflows/mend_ruby.yml | | |
| Calling Workflow: mend.yml | | |
| Confidence: HIGH | | |
|~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~| | |
| Job: mend | | |
| Checkout Ref: ${{ steps.set_ref.outputs.ref }} | | |
| Step If-check: EVALUATED: success() | | |
|==============================================================================| | |
- Enumerating: puppetlabs/ticketmatch! | |
- Enumerating: puppetlabs/puppetlabs-satellite_pe_tools! | |
|==============================================================================| | |
| Repository Name: puppetlabs/puppetlabs-satellite_pe_tools | | |
| Report Type: Actions Pwn Requests | | |
|------------------------------------------------------------------------------| | |
| Workflow Name: mend_ruby.yml | | |
| Issue Type: Pwn Request | | |
| Trigger(s): pull_request_target | | |
| Details: The workflow runs on a risky trigger and might check out the PR | | |
| code, see if it runs it! | | |
| Workflow URL: https://github.com/puppetlabs/cat-github- | | |
| actions/blob/main/.github/workflows/mend_ruby.yml | | |
| Calling Workflow: mend.yml | | |
| Confidence: HIGH | | |
|~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~| | |
| Job: mend | | |
| Checkout Ref: ${{ steps.set_ref.outputs.ref }} | | |
| Step If-check: EVALUATED: success() | | |
|==============================================================================| | |
- Enumerating: puppetlabs/clj-i18n! | |
- Enumerating: puppetlabs/puppetlabs-node_manager! | |
|==============================================================================| | |
| Repository Name: puppetlabs/puppetlabs-node_manager | | |
| Report Type: Actions Pwn Requests | | |
|------------------------------------------------------------------------------| | |
| Workflow Name: mend_ruby.yml | | |
| Issue Type: Pwn Request | | |
| Trigger(s): pull_request_target | | |
| Details: The workflow runs on a risky trigger and might check out the PR | | |
| code, see if it runs it! | | |
| Workflow URL: https://github.com/puppetlabs/cat-github- | | |
| actions/blob/main/.github/workflows/mend_ruby.yml | | |
| Calling Workflow: mend.yml | | |
| Confidence: HIGH | | |
|~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~| | |
| Job: mend | | |
| Checkout Ref: ${{ steps.set_ref.outputs.ref }} | | |
| Step If-check: EVALUATED: success() | | |
|==============================================================================| | |
- Enumerating: puppetlabs/puppetlabs-puppet_agent! | |
- Enumerating: puppetlabs/puppetlabs-websphere_application_server! | |
- Enumerating: puppetlabs/puppetlabs-accounts! | |
|==============================================================================| | |
| Repository Name: puppetlabs/puppetlabs-accounts | | |
| Report Type: Actions Pwn Requests | | |
|------------------------------------------------------------------------------| | |
| Workflow Name: mend_ruby.yml | | |
| Issue Type: Pwn Request | | |
| Trigger(s): pull_request_target | | |
| Details: The workflow runs on a risky trigger and might check out the PR | | |
| code, see if it runs it! | | |
| Workflow URL: https://github.com/puppetlabs/cat-github- | | |
| actions/blob/main/.github/workflows/mend_ruby.yml | | |
| Calling Workflow: mend.yml | | |
| Confidence: HIGH | | |
|~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~| | |
| Job: mend | | |
| Checkout Ref: ${{ steps.set_ref.outputs.ref }} | | |
| Step If-check: EVALUATED: success() | | |
|==============================================================================| | |
- Enumerating: puppetlabs/trapperkeeper-scheduler! | |
- Enumerating: puppetlabs/trapperkeeper-metrics! | |
- Enumerating: puppetlabs/trapperkeeper-comidi-metrics! | |
- Enumerating: puppetlabs/beaker-answers! | |
- Enumerating: puppetlabs/cpp-hocon! | |
- Enumerating: puppetlabs/trapperkeeper-authorization! | |
- Enumerating: puppetlabs/control-repo! | |
- Enumerating: puppetlabs/puppet-ca-bundle! | |
- Enumerating: puppetlabs/puppetlabs-puppet_authorization! | |
|==============================================================================| | |
| Repository Name: puppetlabs/puppetlabs-puppet_authorization | | |
| Report Type: Actions Pwn Requests | | |
|------------------------------------------------------------------------------| | |
| Workflow Name: mend_ruby.yml | | |
| Issue Type: Pwn Request | | |
| Trigger(s): pull_request_target | | |
| Details: The workflow runs on a risky trigger and might check out the PR | | |
| code, see if it runs it! | | |
| Workflow URL: https://github.com/puppetlabs/cat-github- | | |
| actions/blob/main/.github/workflows/mend_ruby.yml | | |
| Calling Workflow: mend.yml | | |
| Confidence: HIGH | | |
|~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~| | |
| Job: mend | | |
| Checkout Ref: ${{ steps.set_ref.outputs.ref }} | | |
| Step If-check: EVALUATED: success() | | |
|==============================================================================| | |
- Enumerating: puppetlabs/pltraining-dockeragent! | |
- Enumerating: puppetlabs/structured-logging! | |
- Enumerating: puppetlabs/learndot_api! | |
- Enumerating: puppetlabs/ruby-pcp-client! | |
- Enumerating: puppetlabs/puppetlabs-node_encrypt! | |
|==============================================================================| | |
| Repository Name: puppetlabs/puppetlabs-node_encrypt | | |
| Report Type: Actions Pwn Requests | | |
|------------------------------------------------------------------------------| | |
| Workflow Name: mend_ruby.yml | | |
| Issue Type: Pwn Request | | |
| Trigger(s): pull_request_target | | |
| Details: The workflow runs on a risky trigger and might check out the PR | | |
| code, see if it runs it! | | |
| Workflow URL: https://github.com/puppetlabs/cat-github- | | |
| actions/blob/main/.github/workflows/mend_ruby.yml | | |
| Calling Workflow: mend.yml | | |
| Confidence: HIGH | | |
|~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~| | |
| Job: mend | | |
| Checkout Ref: ${{ steps.set_ref.outputs.ref }} | | |
| Step If-check: EVALUATED: success() | | |
|==============================================================================| | |
- Enumerating: puppetlabs/lein-release-4digit-version! | |
- Enumerating: puppetlabs/puppetlabs-pe_databases! | |
- Enumerating: puppetlabs/clj-rbac-client! | |
- Enumerating: puppetlabs/puppet-validator! | |
- Enumerating: puppetlabs/hierademo! | |
- Enumerating: puppetlabs/beaker-pe! | |
- Enumerating: puppetlabs/jruby-utils! | |
- Enumerating: puppetlabs/PuppetManifestGenerator! | |
- Enumerating: puppetlabs/prosvc-preview_report! | |
- Enumerating: puppetlabs/gettext-setup-gem! | |
- Enumerating: puppetlabs/puppetlabs-puppetserver_perf_control! | |
- Enumerating: puppetlabs/stockpile! | |
- Enumerating: puppetlabs/puppetlabs-iis! | |
|==============================================================================| | |
| Repository Name: puppetlabs/puppetlabs-iis | | |
| Report Type: Actions Pwn Requests | | |
|------------------------------------------------------------------------------| | |
| Workflow Name: mend_ruby.yml | | |
| Issue Type: Pwn Request | | |
| Trigger(s): pull_request_target | | |
| Details: The workflow runs on a risky trigger and might check out the PR | | |
| code, see if it runs it! | | |
| Workflow URL: https://github.com/puppetlabs/cat-github- | | |
| actions/blob/main/.github/workflows/mend_ruby.yml | | |
| Calling Workflow: mend.yml | | |
| Confidence: HIGH | | |
|~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~| | |
| Job: mend | | |
| Checkout Ref: ${{ steps.set_ref.outputs.ref }} | | |
| Step If-check: EVALUATED: success() | | |
|==============================================================================| | |
- Enumerating: puppetlabs/trapperkeeper-filesystem-watcher! | |
- Enumerating: puppetlabs/beaker-abs! | |
- Enumerating: puppetlabs/clj-parent! | |
- Enumerating: puppetlabs/orchestrator_client-ruby! | |
- Enumerating: puppetlabs/puppet-vro-starter_content! | |
- Enumerating: puppetlabs/pl-build-tools-vanagon! | |
- Enumerating: puppetlabs/puppetlabs-puppetdb_gc! | |
- Enumerating: puppetlabs/puppet-module-gems! | |
- Enumerating: puppetlabs/pcore-java! | |
- Enumerating: puppetlabs/pltraining-pasture! | |
- Enumerating: puppetlabs/distelli-common! | |
- Enumerating: puppetlabs/pdk! | |
|==============================================================================| | |
| Repository Name: puppetlabs/pdk | | |
| Report Type: Actions Pwn Requests | | |
|------------------------------------------------------------------------------| | |
| Workflow Name: gem_ci.yml | | |
| Issue Type: Pwn Request | | |
| Trigger(s): pull_request_target | | |
| Details: The workflow runs on a risky trigger and might check out the PR | | |
| code, see if it runs it! | | |
| Workflow URL: https://github.com/puppetlabs/cat-github- | | |
| actions/blob/main/.github/workflows/gem_ci.yml | | |
| Calling Workflow: ci.yml | | |
| Confidence: MEDIUM | | |
|~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~| | |
| Job: spec | | |
| Checkout Ref: ${{ github.event_name == 'pull_request_target' && | | |
| github.event.pull_request.head.sha || github.ref }} | | |
|------------------------------------------------------------------------------| | |
| Workflow Name: tooling_mend_ruby.yml | | |
| Issue Type: Pwn Request | | |
| Trigger(s): pull_request_target | | |
| Details: The workflow runs on a risky trigger and might check out the PR | | |
| code, see if it runs it! | | |
| Workflow URL: https://github.com/puppetlabs/cat-github- | | |
| actions/blob/main/.github/workflows/tooling_mend_ruby.yml | | |
| Calling Workflow: mend.yml | | |
| Confidence: HIGH | | |
|~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~| | |
| Job: mend | | |
| Checkout Ref: ${{ steps.set_ref.outputs.ref }} | | |
| Step If-check: EVALUATED: success() | | |
|==============================================================================| | |
- Enumerating: puppetlabs/puppetlabs-freeradius! | |
- Enumerating: puppetlabs/puppet-vscode! | |
|==============================================================================| | |
| Repository Name: puppetlabs/puppet-vscode | | |
| Report Type: Actions Pwn Requests | | |
|------------------------------------------------------------------------------| | |
| Workflow Name: mend.yml | | |
| Issue Type: Pwn Request | | |
| Trigger(s): pull_request_target | | |
| Details: The workflow runs on a risky trigger and might check out the PR | | |
| code, see if it runs it! | | |
| Workflow URL: https://github.com/puppetlabs/puppet- | | |
| vscode/blob/main/.github/workflows/mend.yml | | |
| Confidence: MEDIUM | | |
|~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~| | |
| Job: mend | | |
| Checkout Ref: ${{ steps.set_ref.outputs.ref }} | | |
|==============================================================================| | |
- Enumerating: puppetlabs/beaker-puppet! | |
- Enumerating: puppetlabs/pdk-vanagon! | |
|==============================================================================| | |
| Repository Name: puppetlabs/pdk-vanagon | | |
| Report Type: Actions Pwn Requests | | |
|------------------------------------------------------------------------------| | |
| Workflow Name: tooling_mend_ruby.yml | | |
| Issue Type: Pwn Request | | |
| Trigger(s): pull_request_target | | |
| Details: The workflow runs on a risky trigger and might check out the PR | | |
| code, see if it runs it! | | |
| Workflow URL: https://github.com/puppetlabs/cat-github- | | |
| actions/blob/main/.github/workflows/tooling_mend_ruby.yml | | |
| Calling Workflow: mend.yml | | |
| Confidence: HIGH | | |
|~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~| | |
| Job: mend | | |
| Checkout Ref: ${{ steps.set_ref.outputs.ref }} | | |
| Step If-check: EVALUATED: success() | | |
|==============================================================================| | |
- Enumerating: puppetlabs/aws_resource_reaper! | |
- Enumerating: puppetlabs/jruby-deps! | |
- Enumerating: puppetlabs/analytics-client! | |
- Enumerating: puppetlabs/libwhereami! | |
- Enumerating: puppetlabs/beaker-vmpooler! | |
- Enumerating: puppetlabs/puppetlabs-docker! | |
|==============================================================================| | |
| Repository Name: puppetlabs/puppetlabs-docker | | |
| Report Type: Actions Pwn Requests | | |
|------------------------------------------------------------------------------| | |
| Workflow Name: mend_ruby.yml | | |
| Issue Type: Pwn Request | | |
| Trigger(s): pull_request_target | | |
| Details: The workflow runs on a risky trigger and might check out the PR | | |
| code, see if it runs it! | | |
| Workflow URL: https://github.com/puppetlabs/cat-github- | | |
| actions/blob/main/.github/workflows/mend_ruby.yml | | |
| Calling Workflow: mend.yml | | |
| Confidence: HIGH | | |
|~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~| | |
| Job: mend | | |
| Checkout Ref: ${{ steps.set_ref.outputs.ref }} | | |
| Step If-check: EVALUATED: success() | | |
|==============================================================================| | |
- Enumerating: puppetlabs/puppetlabs-helm! | |
- Enumerating: puppetlabs/puppet-classroom-manager! | |
- Enumerating: puppetlabs/education-infrastructure-classroom! | |
- Enumerating: puppetlabs/rubocop-i18n! | |
- Enumerating: puppetlabs/bolt! | |
- Enumerating: puppetlabs/nssm! | |
- Enumerating: puppetlabs/puppetlabs-package! | |
|==============================================================================| | |
| Repository Name: puppetlabs/puppetlabs-package | | |
| Report Type: Actions Pwn Requests | | |
|------------------------------------------------------------------------------| | |
| Workflow Name: mend_ruby.yml | | |
| Issue Type: Pwn Request | | |
| Trigger(s): pull_request_target | | |
| Details: The workflow runs on a risky trigger and might check out the PR | | |
| code, see if it runs it! | | |
| Workflow URL: https://github.com/puppetlabs/cat-github- | | |
| actions/blob/main/.github/workflows/mend_ruby.yml | | |
| Calling Workflow: mend.yml | | |
| Confidence: HIGH | | |
|~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~| | |
| Job: mend | | |
| Checkout Ref: ${{ steps.set_ref.outputs.ref }} | | |
| Step If-check: EVALUATED: success() | | |
|==============================================================================| | |
- Enumerating: puppetlabs/puppet-resource_api! | |
|==============================================================================| | |
| Repository Name: puppetlabs/puppet-resource_api | | |
| Report Type: Actions Pwn Requests | | |
|------------------------------------------------------------------------------| | |
| Workflow Name: tooling_mend_ruby.yml | | |
| Issue Type: Pwn Request | | |
| Trigger(s): pull_request_target | | |
| Details: The workflow runs on a risky trigger and might check out the PR | | |
| code, see if it runs it! | | |
| Workflow URL: https://github.com/puppetlabs/cat-github- | | |
| actions/blob/main/.github/workflows/tooling_mend_ruby.yml | | |
| Calling Workflow: mend.yml | | |
| Confidence: HIGH | | |
|~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~| | |
| Job: mend | | |
| Checkout Ref: ${{ steps.set_ref.outputs.ref }} | | |
| Step If-check: EVALUATED: success() | | |
|==============================================================================| | |
- Enumerating: puppetlabs/puppetlabs-kubernetes! | |
|==============================================================================| | |
| Repository Name: puppetlabs/puppetlabs-kubernetes | | |
| Report Type: Actions Pwn Requests | | |
|------------------------------------------------------------------------------| | |
| Workflow Name: mend_ruby.yml | | |
| Issue Type: Pwn Request | | |
| Trigger(s): pull_request_target | | |
| Details: The workflow runs on a risky trigger and might check out the PR | | |
| code, see if it runs it! | | |
| Workflow URL: https://github.com/puppetlabs/cat-github- | | |
| actions/blob/main/.github/workflows/mend_ruby.yml | | |
| Calling Workflow: mend.yml | | |
| Confidence: HIGH | | |
|~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~| | |
| Job: mend | | |
| Checkout Ref: ${{ steps.set_ref.outputs.ref }} | | |
| Step If-check: EVALUATED: success() | | |
|==============================================================================| | |
- Enumerating: puppetlabs/puppetlabs-service! | |
|==============================================================================| | |
| Repository Name: puppetlabs/puppetlabs-service | | |
| Report Type: Actions Pwn Requests | | |
|------------------------------------------------------------------------------| | |
| Workflow Name: mend_ruby.yml | | |
| Issue Type: Pwn Request | | |
| Trigger(s): pull_request_target | | |
| Details: The workflow runs on a risky trigger and might check out the PR | | |
| code, see if it runs it! | | |
| Workflow URL: https://github.com/puppetlabs/cat-github- | | |
| actions/blob/main/.github/workflows/mend_ruby.yml | | |
| Calling Workflow: mend.yml | | |
| Confidence: HIGH | | |
|~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~| | |
| Job: mend | | |
| Checkout Ref: ${{ steps.set_ref.outputs.ref }} | | |
| Step If-check: EVALUATED: success() | | |
|==============================================================================| | |
- Enumerating: puppetlabs/puppet-runtime! | |
- Enumerating: puppetlabs/puppetlabs-puppet_conf! | |
|==============================================================================| | |
| Repository Name: puppetlabs/puppetlabs-puppet_conf | | |
| Report Type: Actions Pwn Requests | | |
|------------------------------------------------------------------------------| | |
| Workflow Name: mend_ruby.yml | | |
| Issue Type: Pwn Request | | |
| Trigger(s): pull_request_target | | |
| Details: The workflow runs on a risky trigger and might check out the PR | | |
| code, see if it runs it! | | |
| Workflow URL: https://github.com/puppetlabs/cat-github- | | |
| actions/blob/main/.github/workflows/mend_ruby.yml | | |
| Calling Workflow: mend.yml | | |
| Confidence: HIGH | | |
|~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~| | |
| Job: mend | | |
| Checkout Ref: ${{ steps.set_ref.outputs.ref }} | | |
| Step If-check: EVALUATED: success() | | |
|==============================================================================| | |
- Enumerating: puppetlabs/puppetlabs-facter_task! | |
|==============================================================================| | |
| Repository Name: puppetlabs/puppetlabs-facter_task | | |
| Report Type: Actions Pwn Requests | | |
|------------------------------------------------------------------------------| | |
| Workflow Name: mend_ruby.yml | | |
| Issue Type: Pwn Request | | |
| Trigger(s): pull_request_target | | |
| Details: The workflow runs on a risky trigger and might check out the PR | | |
| code, see if it runs it! | | |
| Workflow URL: https://github.com/puppetlabs/cat-github- | | |
| actions/blob/main/.github/workflows/mend_ruby.yml | | |
| Calling Workflow: mend.yml | | |
| Confidence: HIGH | | |
|~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~| | |
| Job: mend | | |
| Checkout Ref: ${{ steps.set_ref.outputs.ref }} | | |
| Step If-check: EVALUATED: success() | | |
|==============================================================================| | |
- Enumerating: puppetlabs/puppetlabs-exec! | |
|==============================================================================| | |
| Repository Name: puppetlabs/puppetlabs-exec | | |
| Report Type: Actions Pwn Requests | | |
|------------------------------------------------------------------------------| | |
| Workflow Name: mend_ruby.yml | | |
| Issue Type: Pwn Request | | |
| Trigger(s): pull_request_target | | |
| Details: The workflow runs on a risky trigger and might check out the PR | | |
| code, see if it runs it! | | |
| Workflow URL: https://github.com/puppetlabs/cat-github- | | |
| actions/blob/main/.github/workflows/mend_ruby.yml | | |
| Calling Workflow: mend.yml | | |
| Confidence: HIGH | | |
|~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~| | |
| Job: mend | | |
| Checkout Ref: ${{ steps.set_ref.outputs.ref }} | | |
| Step If-check: EVALUATED: success() | | |
|==============================================================================| | |
- Enumerating: puppetlabs/infinitory! | |
- Enumerating: puppetlabs/puppetlabs-bootstrap! | |
- Enumerating: puppetlabs/kream! | |
- Enumerating: puppetlabs/beaker-task_helper! | |
- Enumerating: puppetlabs/task-modules! | |
- Enumerating: puppetlabs/puppetlabs-dsc_lite! | |
|==============================================================================| | |
| Repository Name: puppetlabs/puppetlabs-dsc_lite | | |
| Report Type: Actions Pwn Requests | | |
|------------------------------------------------------------------------------| | |
| Workflow Name: tooling_mend_ruby.yml | | |
| Issue Type: Pwn Request | | |
| Trigger(s): pull_request_target | | |
| Details: The workflow runs on a risky trigger and might check out the PR | | |
| code, see if it runs it! | | |
| Workflow URL: https://github.com/puppetlabs/cat-github- | | |
| actions/blob/main/.github/workflows/tooling_mend_ruby.yml | | |
| Calling Workflow: mend.yml | | |
| Confidence: HIGH | | |
|~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~| | |
| Job: mend | | |
| Checkout Ref: ${{ steps.set_ref.outputs.ref }} | | |
| Step If-check: EVALUATED: success() | | |
|==============================================================================| | |
- Enumerating: puppetlabs/puppetlabs-rook! | |
- Enumerating: puppetlabs/puppetlabs-scheduled_task! | |
|==============================================================================| | |
| Repository Name: puppetlabs/puppetlabs-scheduled_task | | |
| Report Type: Actions Pwn Requests | | |
|------------------------------------------------------------------------------| | |
| Workflow Name: mend_ruby.yml | | |
| Issue Type: Pwn Request | | |
| Trigger(s): pull_request_target | | |
| Details: The workflow runs on a risky trigger and might check out the PR | | |
| code, see if it runs it! | | |
| Workflow URL: https://github.com/puppetlabs/cat-github- | | |
| actions/blob/main/.github/workflows/mend_ruby.yml | | |
| Calling Workflow: mend.yml | | |
| Confidence: HIGH | | |
|~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~| | |
| Job: mend | | |
| Checkout Ref: ${{ steps.set_ref.outputs.ref }} | | |
| Step If-check: EVALUATED: success() | | |
|==============================================================================| | |
- Enumerating: puppetlabs/pdk-templates! | |
|==============================================================================| | |
| Repository Name: puppetlabs/pdk-templates | | |
| Report Type: Actions Pwn Requests | | |
|------------------------------------------------------------------------------| | |
| Workflow Name: tooling_mend_ruby.yml | | |
| Issue Type: Pwn Request | | |
| Trigger(s): pull_request_target | | |
| Details: The workflow runs on a risky trigger and might check out the PR | | |
| code, see if it runs it! | | |
| Workflow URL: https://github.com/puppetlabs/cat-github- | | |
| actions/blob/main/.github/workflows/tooling_mend_ruby.yml | | |
| Calling Workflow: mend.yml | | |
| Confidence: HIGH | | |
|~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~| | |
| Job: mend | | |
| Checkout Ref: ${{ steps.set_ref.outputs.ref }} | | |
| Step If-check: EVALUATED: success() | | |
|==============================================================================| | |
- Enumerating: puppetlabs/cisco_ios! | |
- Enumerating: puppetlabs/anubis-docker! | |
- Enumerating: puppetlabs/support-tasks! | |
- Enumerating: puppetlabs/bolt-vanagon! | |
|==============================================================================| | |
| Repository Name: puppetlabs/bolt-vanagon | | |
| Report Type: Actions Script Injection | | |
|------------------------------------------------------------------------------| | |
| Workflow Name: snyk-scan.yml | | |
| Issue Type: Actions Injection | | |
| Trigger(s): pull_request_target | | |
| Details: The workflow uses variables by context expression within run or | | |
| script steps. If the step is reachable and the variables are user controlled,| | |
| then they can be used to inject arbitrary code into the workflow. | | |
| Workflow URL: https://github.com/puppetlabs/bolt- | | |
| vanagon/blob/main/.github/workflows/snyk-scan.yml | | |
| Confidence: UNKNOWN | | |
|~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~| | |
| Job: snyk_vanagon | | |
| Step: Check output | | |
| Variables: steps.scan.outputs.vulns | | |
| Step If-check: steps.scan.outputs.vulns != '' | | |
|==============================================================================| | |
- Enumerating: puppetlabs/puppetlabs-peadm! | |
- Enumerating: puppetlabs/puppet-chocolatey-packages! | |
- Enumerating: puppetlabs/puppet-editor-syntax! | |
- Enumerating: puppetlabs/pdksync! | |
|==============================================================================| | |
| Repository Name: puppetlabs/pdksync | | |
| Report Type: Actions Pwn Requests | | |
|------------------------------------------------------------------------------| | |
| Workflow Name: gem_ci.yml | | |
| Issue Type: Pwn Request | | |
| Trigger(s): pull_request_target | | |
| Details: The workflow runs on a risky trigger and might check out the PR | | |
| code, see if it runs it! | | |
| Workflow URL: https://github.com/puppetlabs/cat-github- | | |
| actions/blob/main/.github/workflows/gem_ci.yml | | |
| Calling Workflow: ci.yml | | |
| Confidence: MEDIUM | | |
|~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~| | |
| Job: spec | | |
| Checkout Ref: ${{ github.event_name == 'pull_request_target' && | | |
| github.event.pull_request.head.sha || github.ref }} | | |
|------------------------------------------------------------------------------| | |
| Workflow Name: tooling_mend_ruby.yml | | |
| Issue Type: Pwn Request | | |
| Trigger(s): pull_request_target | | |
| Details: The workflow runs on a risky trigger and might check out the PR | | |
| code, see if it runs it! | | |
| Workflow URL: https://github.com/puppetlabs/cat-github- | | |
| actions/blob/main/.github/workflows/tooling_mend_ruby.yml | | |
| Calling Workflow: mend.yml | | |
| Confidence: HIGH | | |
|~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~| | |
| Job: mend | | |
| Checkout Ref: ${{ steps.set_ref.outputs.ref }} | | |
| Step If-check: EVALUATED: success() | | |
|==============================================================================| | |
- Enumerating: puppetlabs/puppet-editor-services! | |
|==============================================================================| | |
| Repository Name: puppetlabs/puppet-editor-services | | |
| Report Type: Actions Pwn Requests | | |
|------------------------------------------------------------------------------| | |
| Workflow Name: gem_ci.yml | | |
| Issue Type: Pwn Request | | |
| Trigger(s): pull_request_target | | |
| Details: The workflow runs on a risky trigger and might check out the PR | | |
| code, see if it runs it! | | |
| Workflow URL: https://github.com/puppetlabs/cat-github- | | |
| actions/blob/main/.github/workflows/gem_ci.yml | | |
| Calling Workflow: ci.yml | | |
| Confidence: MEDIUM | | |
|~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~| | |
| Job: spec | | |
| Checkout Ref: ${{ github.event_name == 'pull_request_target' && | | |
| github.event.pull_request.head.sha || github.ref }} | | |
|------------------------------------------------------------------------------| | |
| Workflow Name: tooling_mend_ruby.yml | | |
| Issue Type: Pwn Request | | |
| Trigger(s): pull_request_target | | |
| Details: The workflow runs on a risky trigger and might check out the PR | | |
| code, see if it runs it! | | |
| Workflow URL: https://github.com/puppetlabs/cat-github- | | |
| actions/blob/main/.github/workflows/tooling_mend_ruby.yml | | |
| Calling Workflow: mend.yml | | |
| Confidence: HIGH | | |
|~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~| | |
| Job: mend | | |
| Checkout Ref: ${{ steps.set_ref.outputs.ref }} | | |
| Step If-check: EVALUATED: success() | | |
|==============================================================================| | |
- Enumerating: puppetlabs/ref_arch_setup! | |
- Enumerating: puppetlabs/puppetlabs-zone_core! | |
- Enumerating: puppetlabs/puppetlabs-bolt_shim! | |
- Enumerating: puppetlabs/puppetlabs-puppet_metrics_collector! | |
- Enumerating: puppetlabs/puppetlabs-mailalias_core! | |
- Enumerating: puppetlabs/encrypted_backup! | |
- Enumerating: puppetlabs/puppetlabs-testing! | |
|==============================================================================| | |
| Repository Name: puppetlabs/puppetlabs-testing | | |
| Report Type: Actions Pwn Requests | | |
|------------------------------------------------------------------------------| | |
| Workflow Name: mend_ruby.yml | | |
| Issue Type: Pwn Request | | |
| Trigger(s): pull_request_target | | |
| Details: The workflow runs on a risky trigger and might check out the PR | | |
| code, see if it runs it! | | |
| Workflow URL: https://github.com/puppetlabs/cat-github- | | |
| actions/blob/main/.github/workflows/mend_ruby.yml | | |
| Calling Workflow: mend.yml | | |
| Confidence: HIGH | | |
|~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~| | |
| Job: mend | | |
| Checkout Ref: ${{ steps.set_ref.outputs.ref }} | | |
| Step If-check: EVALUATED: success() | | |
|==============================================================================| | |
- Enumerating: puppetlabs/prtg_push! | |
- Enumerating: puppetlabs/puppetlabs-azure_arm! | |
- Enumerating: puppetlabs/puppetlabs-zfs_core! | |
- Enumerating: puppetlabs/pe_support_kb_task_templates! | |
- Enumerating: puppetlabs/device_manager! | |
|==============================================================================| | |
| Repository Name: puppetlabs/device_manager | | |
| Report Type: Actions Pwn Requests | | |
|------------------------------------------------------------------------------| | |
| Workflow Name: mend_ruby.yml | | |
| Issue Type: Pwn Request | | |
| Trigger(s): pull_request_target | | |
| Details: The workflow runs on a risky trigger and might check out the PR | | |
| code, see if it runs it! | | |
| Workflow URL: https://github.com/puppetlabs/cat-github- | | |
| actions/blob/main/.github/workflows/mend_ruby.yml | | |
| Calling Workflow: mend.yml | | |
| Confidence: HIGH | | |
|~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~| | |
| Job: mend | | |
| Checkout Ref: ${{ steps.set_ref.outputs.ref }} | | |
| Step If-check: EVALUATED: success() | | |
|==============================================================================| | |
- Enumerating: puppetlabs/puppet-vra_puppet_plugin_prep! | |
- Enumerating: puppetlabs/puppetlabs-panos! | |
- Enumerating: puppetlabs/puppetlabs-selinux_core! | |
- Enumerating: puppetlabs/kreamlet! | |
- Enumerating: puppetlabs/puppetserver-ca-cli! | |
- Enumerating: puppetlabs/puppetlabs-facts! | |
- Enumerating: puppetlabs/homebrew-puppet! | |
- Enumerating: puppetlabs/puppetlabs-cd4pe! | |
- Enumerating: puppetlabs/puppetlabs-sshkeys_core! | |
- Enumerating: puppetlabs/puppet-community-mvp! | |
- Enumerating: puppetlabs/docs-archive! | |
- Enumerating: puppetlabs/puppetlabs-augeas_core! | |
- Enumerating: puppetlabs/puppetlabs-yumrepo_core! | |
- Enumerating: puppetlabs/puppetlabs-host_core! | |
- Enumerating: puppetlabs/puppetlabs-mount_core! | |
- Enumerating: puppetlabs/puppetlabs-cron_core! | |
- Enumerating: puppetlabs/pupperware! | |
- Enumerating: puppetlabs/courseware-lms-gswp-cr! | |
- Enumerating: puppetlabs/errawr-go! | |
- Enumerating: puppetlabs/errawr-gen! | |
- Enumerating: puppetlabs/puppet-dev-tools! | |
- Enumerating: puppetlabs/puppetlabs-cd4pe_tests! | |
- Enumerating: puppetlabs/puppet_litmus! | |
|==============================================================================| | |
| Repository Name: puppetlabs/puppet_litmus | | |
| Report Type: Actions Pwn Requests | | |
|------------------------------------------------------------------------------| | |
| Workflow Name: gem_ci.yml | | |
| Issue Type: Pwn Request | | |
| Trigger(s): pull_request_target | | |
| Details: The workflow runs on a risky trigger and might check out the PR | | |
| code, see if it runs it! | | |
| Workflow URL: https://github.com/puppetlabs/cat-github- | | |
| actions/blob/main/.github/workflows/gem_ci.yml | | |
| Calling Workflow: ci.yml | | |
| Confidence: MEDIUM | | |
|~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~| | |
| Job: spec | | |
| Checkout Ref: ${{ github.event_name == 'pull_request_target' && | | |
| github.event.pull_request.head.sha || github.ref }} | | |
|------------------------------------------------------------------------------| | |
| Workflow Name: tooling_mend_ruby.yml | | |
| Issue Type: Pwn Request | | |
| Trigger(s): pull_request_target | | |
| Details: The workflow runs on a risky trigger and might check out the PR | | |
| code, see if it runs it! | | |
| Workflow URL: https://github.com/puppetlabs/cat-github- | | |
| actions/blob/main/.github/workflows/tooling_mend_ruby.yml | | |
| Calling Workflow: mend.yml | | |
| Confidence: HIGH | | |
|~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~| | |
| Job: mend | | |
| Checkout Ref: ${{ steps.set_ref.outputs.ref }} | | |
| Step If-check: EVALUATED: success() | | |
|==============================================================================| | |
- Enumerating: puppetlabs/puppetlabs-apply_helpers! | |
- Enumerating: puppetlabs/contributor-summit-project! | |
- Enumerating: puppetlabs/puppetlabs-splunk_hec! | |
- Enumerating: puppetlabs/TA-puppet-report-viewer! | |
- Enumerating: puppetlabs/provision! | |
|==============================================================================| | |
| Repository Name: puppetlabs/provision | | |
| Report Type: Actions Pwn Requests | | |
|------------------------------------------------------------------------------| | |
| Workflow Name: tooling_mend_ruby.yml | | |
| Issue Type: Pwn Request | | |
| Trigger(s): pull_request_target | | |
| Details: The workflow runs on a risky trigger and might check out the PR | | |
| code, see if it runs it! | | |
| Workflow URL: https://github.com/puppetlabs/cat-github- | | |
| actions/blob/main/.github/workflows/tooling_mend_ruby.yml | | |
| Calling Workflow: mend.yml | | |
| Confidence: HIGH | | |
|~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~| | |
| Job: mend | | |
| Checkout Ref: ${{ steps.set_ref.outputs.ref }} | | |
| Step If-check: EVALUATED: success() | | |
|==============================================================================| | |
- Enumerating: puppetlabs/puppetlabs-ruby_task_helper! | |
- Enumerating: puppetlabs/puppetlabs-python_task_helper! | |
- Enumerating: puppetlabs/pe_tech_check! | |
- Enumerating: puppetlabs/puppet-community-rangefinder! | |
- Enumerating: puppetlabs/ace! | |
- Enumerating: puppetlabs/puppetlabs-test_device! | |
- Enumerating: puppetlabs/puppet-community-rangefinder-webhook! | |
- Enumerating: puppetlabs/litmusimage! | |
- Enumerating: puppetlabs/tig-demo! | |
- Enumerating: puppetlabs/.github! | |
- Enumerating: puppetlabs/auth-client! | |
- Enumerating: puppetlabs/beerboard! | |
- Enumerating: puppetlabs/design-system! | |
- Enumerating: puppetlabs/PIE_tools! | |
[!] Workflow pie_tools.yml was invalid! | |
- Enumerating: puppetlabs/puppetlabs-powershell_task_helper! | |
- Enumerating: puppetlabs/analytics! | |
- Enumerating: puppetlabs/bolt-project! | |
- Enumerating: puppetlabs/posh-bolt! | |
- Enumerating: puppetlabs/puppet_ciamohe! | |
- Enumerating: puppetlabs/clj-shell-utils! | |
- Enumerating: puppetlabs/helmctx! | |
- Enumerating: puppetlabs/pdk-docker! | |
- Enumerating: puppetlabs/hacktoberfest! | |
- Enumerating: puppetlabs/puppetlabs-azure_inventory! | |
- Enumerating: puppetlabs/ruby-pwsh! | |
|==============================================================================| | |
| Repository Name: puppetlabs/ruby-pwsh | | |
| Report Type: Actions Pwn Requests | | |
|------------------------------------------------------------------------------| | |
| Workflow Name: gem_ci.yml | | |
| Issue Type: Pwn Request | | |
| Trigger(s): pull_request_target | | |
| Details: The workflow runs on a risky trigger and might check out the PR | | |
| code, see if it runs it! | | |
| Workflow URL: https://github.com/puppetlabs/cat-github- | | |
| actions/blob/main/.github/workflows/gem_ci.yml | | |
| Calling Workflow: ci.yml | | |
| Confidence: MEDIUM | | |
|~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~| | |
| Job: spec | | |
| Checkout Ref: ${{ github.event_name == 'pull_request_target' && | | |
| github.event.pull_request.head.sha || github.ref }} | | |
|------------------------------------------------------------------------------| | |
| Workflow Name: tooling_mend_ruby.yml | | |
| Issue Type: Pwn Request | | |
| Trigger(s): pull_request_target | | |
| Details: The workflow runs on a risky trigger and might check out the PR | | |
| code, see if it runs it! | | |
| Workflow URL: https://github.com/puppetlabs/cat-github- | | |
| actions/blob/main/.github/workflows/tooling_mend_ruby.yml | | |
| Calling Workflow: mend.yml | | |
| Confidence: HIGH | | |
|~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~| | |
| Job: mend | | |
| Checkout Ref: ${{ steps.set_ref.outputs.ref }} | | |
| Step If-check: EVALUATED: success() | | |
|==============================================================================| | |
- Enumerating: puppetlabs/cdpe-test-control-repo! | |
- Enumerating: puppetlabs/puppetlabs-cd4pe_deployments! | |
- Enumerating: puppetlabs/vault-plugin-secrets-oauthapp! | |
- Enumerating: puppetlabs/puppetserver-helm-chart! | |
- Enumerating: puppetlabs/puppetlabs-terraform! | |
- Enumerating: puppetlabs/puppetlabs-vault! | |
- Enumerating: puppetlabs/puppetlabs-aws_inventory! | |
- Enumerating: puppetlabs/relay-sdk-go! | |
- Enumerating: puppetlabs/puppetlabs-yaml! | |
- Enumerating: puppetlabs/puppetlabs-ruby_plugin_helper! | |
- Enumerating: puppetlabs/dataops-pipeline-tools! | |
- Enumerating: puppetlabs/facter-acceptance! | |
- Enumerating: puppetlabs/peadm-bolt-project! | |
- Enumerating: puppetlabs/puppetlabs-pecdm! | |
- Enumerating: puppetlabs/preupgrade_check! | |
- Enumerating: puppetlabs/pmc_miller! | |
- Enumerating: puppetlabs/dropsonde! | |
- Enumerating: puppetlabs/terraform-google-pe_arch! | |
- Enumerating: puppetlabs/puppetlabs-minimum_version! | |
- Enumerating: puppetlabs/puppetlabs-env_plugin! | |
- Enumerating: puppetlabs/puppet-modulebuilder! | |
|==============================================================================| | |
| Repository Name: puppetlabs/puppet-modulebuilder | | |
| Report Type: Actions Pwn Requests | | |
|------------------------------------------------------------------------------| | |
| Workflow Name: gem_ci.yml | | |
| Issue Type: Pwn Request | | |
| Trigger(s): pull_request_target | | |
| Details: The workflow runs on a risky trigger and might check out the PR | | |
| code, see if it runs it! | | |
| Workflow URL: https://github.com/puppetlabs/cat-github- | | |
| actions/blob/main/.github/workflows/gem_ci.yml | | |
| Calling Workflow: ci.yml | | |
| Confidence: MEDIUM | | |
|~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~| | |
| Job: spec | | |
| Checkout Ref: ${{ github.event_name == 'pull_request_target' && | | |
| github.event.pull_request.head.sha || github.ref }} | | |
|------------------------------------------------------------------------------| | |
| Workflow Name: tooling_mend_ruby.yml | | |
| Issue Type: Pwn Request | | |
| Trigger(s): pull_request_target | | |
| Details: The workflow runs on a risky trigger and might check out the PR | | |
| code, see if it runs it! | | |
| Workflow URL: https://github.com/puppetlabs/cat-github- | | |
| actions/blob/main/.github/workflows/tooling_mend_ruby.yml | | |
| Calling Workflow: mend.yml | | |
| Confidence: HIGH | | |
|~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~| | |
| Job: mend | | |
| Checkout Ref: ${{ steps.set_ref.outputs.ref }} | | |
| Step If-check: EVALUATED: success() | | |
|==============================================================================| | |
- Enumerating: puppetlabs/puppetlabs-cd4pe_jobs! | |
- Enumerating: puppetlabs/puppetlabs-dropsonde! | |
- Enumerating: puppetlabs/dropsonde-aggregation! | |
- Enumerating: puppetlabs/go-pe-client! | |
- Enumerating: puppetlabs/TA-puppet-alert-orchestrator! | |
- Enumerating: puppetlabs/terraform-aws-pe_arch! | |
- Enumerating: puppetlabs/servicenow_tasks! | |
- Enumerating: puppetlabs/puppetlabs-gcloud_inventory! | |
- Enumerating: puppetlabs/relay-workflows! | |
- Enumerating: puppetlabs/puppetlabs-pkcs7! | |
- Enumerating: puppetlabs/pe_patch! | |
- Enumerating: puppetlabs/puppetlabs-servicenow_cmdb_integration! | |
- Enumerating: puppetlabs/relay-docs! | |
- Enumerating: puppetlabs/winrm_security! | |
- Enumerating: puppetlabs/go-cd4pe-client! | |
- Enumerating: puppetlabs/puppetlabs-pe_quick_data! | |
- Enumerating: puppetlabs/bolt-tig-stack! | |
- Enumerating: puppetlabs/litmus! | |
- Enumerating: puppetlabs/relay-sdk-python! | |
- Enumerating: puppetlabs/se_control_2020! | |
- Enumerating: puppetlabs/puppetlabs-servicenow_reporting_integration! | |
- Enumerating: puppetlabs/relay-helm-ambassador-knative! | |
- Enumerating: puppetlabs/bolt-getting-started! | |
- Enumerating: puppetlabs/puppetlabs-servicenow_change_requests! | |
- Enumerating: puppetlabs/relay-rfcs! | |
- Enumerating: puppetlabs/scavenger-hunt-instructions! | |
- Enumerating: puppetlabs/puppetlabs-patching_as_code! | |
- Enumerating: puppetlabs/education-control-repo! | |
- Enumerating: puppetlabs/tlser! | |
- Enumerating: puppetlabs/bolt-examples! | |
- Enumerating: puppetlabs/pxp-agent-vanagon! | |
- Enumerating: puppetlabs/pltraining-apache! | |
- Enumerating: puppetlabs/courseware-lms-lab-downloads! | |
- Enumerating: puppetlabs/puppetlabs-http_request! | |
- Enumerating: puppetlabs/dellemc-powerstore! | |
- Enumerating: puppetlabs/relaysh-docker-update-workflow! | |
- Enumerating: puppetlabs/puppetlabs-pe_event_forwarding! | |
- Enumerating: puppetlabs/bolt-waypoint-plugin! | |
- Enumerating: puppetlabs/puppetlabs-secure_env_vars! | |
- Enumerating: puppetlabs/relay-pls! | |
- Enumerating: puppetlabs/go-libs! | |
- Enumerating: puppetlabs/puppetlabs-puppet_operations_appliance! | |
- Enumerating: puppetlabs/leg! | |
- Enumerating: puppetlabs/community! | |
- Enumerating: puppetlabs/bunsen! | |
- Enumerating: puppetlabs/abide_dev_utils! | |
- Enumerating: puppetlabs/pe-sdk-go! | |
- Enumerating: puppetlabs/opv! | |
- Enumerating: puppetlabs/puppetlabs-sccm! | |
- Enumerating: puppetlabs/devx! | |
- Enumerating: puppetlabs/baker-round! | |
- Enumerating: puppetlabs/terraform-azure-pe_arch! | |
- Enumerating: puppetlabs/aws-hol-repo! | |
- Enumerating: puppetlabs/gettingstartedwb! | |
- Enumerating: puppetlabs/relay-services! | |
- Enumerating: puppetlabs/puppetlabs-bash_task_helper! | |
- Enumerating: puppetlabs/install-puppet! | |
- Enumerating: puppetlabs/puppetlabs-pam_firewall! | |
- Enumerating: puppetlabs/learn-to-be-a-puppet-engineer! | |
- Enumerating: puppetlabs/relay-client-go! | |
- Enumerating: puppetlabs/puppetlabs-pam_tools! | |
- Enumerating: puppetlabs/security-snyk-vanagon-action! | |
- Enumerating: puppetlabs/security-snyk-clojure-action! | |
- Enumerating: puppetlabs/pct-test-template-01! | |
- Enumerating: puppetlabs/pct-test-template-02! | |
- Enumerating: puppetlabs/influxdb! | |
- Enumerating: puppetlabs/kmo-meta-control-repo! | |
- Enumerating: puppetlabs/puppetlabs-pe_status_check! | |
- Enumerating: puppetlabs/diagrams-net-libraries! | |
- Enumerating: puppetlabs/puppet-data-service! | |
- Enumerating: puppetlabs/puppet-sneakernet! | |
- Enumerating: puppetlabs/fantastic-adventure! | |
- Enumerating: puppetlabs/vmpooler-provider-vsphere! | |
- Enumerating: puppetlabs/vmpooler-deployment! | |
- Enumerating: puppetlabs/vmpooler-provider-gce! | |
- Enumerating: puppetlabs/prm-test-tool-01! | |
- Enumerating: puppetlabs/prm-test-tool-02! | |
- Enumerating: puppetlabs/puppetlabs-puppet_data_service! | |
- Enumerating: puppetlabs/log4jscanner! | |
- Enumerating: puppetlabs/puppetlabs-data-entitlement! | |
- Enumerating: puppetlabs/denmark! | |
- Enumerating: puppetlabs/kmo-cd4pe-scripts! | |
- Enumerating: puppetlabs/kubectl-ran! | |
- Enumerating: puppetlabs/kmo-4-6-meta-repo! | |
- Enumerating: puppetlabs/language-style-guide! | |
- Enumerating: puppetlabs/puppet_operational_dashboards! | |
- Enumerating: puppetlabs/kmo-501-control-repo! | |
- Enumerating: puppetlabs/community-labeller! | |
- Enumerating: puppetlabs/pds-integration-control-repo! | |
- Enumerating: puppetlabs/kmo-601-nginx! | |
- Enumerating: puppetlabs/kmo-601-control-repo! | |
- Enumerating: puppetlabs/vmpooler-provider-ec2! | |
- Enumerating: puppetlabs/repo_housekeeper! | |
- Enumerating: puppetlabs/cat-team-github-metrics! | |
- Enumerating: puppetlabs/cat-github-actions! | |
- Enumerating: puppetlabs/puppet-lint-check_unsafe_interpolations! | |
|==============================================================================| | |
| Repository Name: puppetlabs/puppet-lint-check_unsafe_interpolations | | |
| Report Type: Actions Pwn Requests | | |
|------------------------------------------------------------------------------| | |
| Workflow Name: gem_ci.yml | | |
| Issue Type: Pwn Request | | |
| Trigger(s): pull_request_target | | |
| Details: The workflow runs on a risky trigger and might check out the PR | | |
| code, see if it runs it! | | |
| Workflow URL: https://github.com/puppetlabs/cat-github- | | |
| actions/blob/main/.github/workflows/gem_ci.yml | | |
| Calling Workflow: ci.yaml | | |
| Confidence: MEDIUM | | |
|~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~| | |
| Job: spec | | |
| Checkout Ref: ${{ github.event_name == 'pull_request_target' && | | |
| github.event.pull_request.head.sha || github.ref }} | | |
|==============================================================================| | |
- Enumerating: puppetlabs/cloud-chaos-webinar! | |
- Enumerating: puppetlabs/puppet-approved-modules! | |
- Enumerating: puppetlabs/puppetlabs-puppet_bolt_server! | |
- Enumerating: puppetlabs/debian_codename! | |
- Enumerating: puppetlabs/vmpooler-dns-gcp! | |
- Enumerating: puppetlabs/puppet-pson! | |
- Enumerating: puppetlabs/puppet_module_metadata! | |
- Enumerating: puppetlabs/trapperkeeper-webserver-jetty10! | |
- Enumerating: puppetlabs/phoenix-github-actions! | |
- Enumerating: puppetlabs/pdk-rubocop! | |
|==============================================================================| | |
| Repository Name: puppetlabs/pdk-rubocop | | |
| Report Type: Actions Pwn Requests | | |
|------------------------------------------------------------------------------| | |
| Workflow Name: tooling_mend_ruby.yml | | |
| Issue Type: Pwn Request | | |
| Trigger(s): pull_request_target | | |
| Details: The workflow runs on a risky trigger and might check out the PR | | |
| code, see if it runs it! | | |
| Workflow URL: https://github.com/puppetlabs/cat-github- | | |
| actions/blob/main/.github/workflows/tooling_mend_ruby.yml | | |
| Calling Workflow: mend.yml | | |
| Confidence: HIGH | | |
|~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~| | |
| Job: mend | | |
| Checkout Ref: ${{ steps.set_ref.outputs.ref }} | | |
| Step If-check: EVALUATED: success() | | |
|==============================================================================| | |
- Enumerating: puppetlabs/pdk-test! | |
- Enumerating: puppetlabs/openssl-fips! | |
- Enumerating: puppetlabs/May-The-Source-Be-With-You! | |
- Enumerating: puppetlabs/foss-license-report! | |
- Enumerating: puppetlabs/step-perforce-plugins! | |
- Enumerating: puppetlabs/clojars-puppetlabs-jenkins! | |
- Enumerating: puppetlabs/puppet-dev-boxes! | |
- Enumerating: puppetlabs/puppet-commit! | |
- Enumerating: puppetlabs/cem_workflows! | |
- Enumerating: puppetlabs/kmo_provision_pe! | |
- Enumerating: puppetlabs/puppetlabs-provision! | |
- Enumerating: puppetlabs/release-engineering-repo-standards! | |
- Enumerating: puppetlabs/cem_issues! | |
- Enumerating: puppetlabs/forge-standards! | |
- Enumerating: puppetlabs/puppet-enterprise_issues! | |
- Enumerating: puppetlabs/forge_issues! | |
- Enumerating: puppetlabs/pe_501_hello_world_lab_3! | |
- Enumerating: puppetlabs/pe_501_hello_world_lab_2! | |
- Enumerating: puppetlabs/pe_501_hello_world_lab_1! | |
- Enumerating: puppetlabs/pe_501_control_repo_lab_2! | |
- Enumerating: puppetlabs/pe_501_control_repo_lab_1! | |
- Enumerating: puppetlabs/xzscanner! | |
- Enumerating: puppetlabs/puppetfile-check! | |
- Enumerating: puppetlabs/puppetlabs-puppet_status_check! | |
|==============================================================================| | |
| Repository Name: puppetlabs/puppetlabs-puppet_status_check | | |
| Report Type: Actions Pwn Requests | | |
|------------------------------------------------------------------------------| | |
| Workflow Name: mend_ruby.yml | | |
| Issue Type: Pwn Request | | |
| Trigger(s): pull_request_target | | |
| Details: The workflow runs on a risky trigger and might check out the PR | | |
| code, see if it runs it! | | |
| Workflow URL: https://github.com/puppetlabs/cat-github- | | |
| actions/blob/main/.github/workflows/mend_ruby.yml | | |
| Calling Workflow: mend.yml | | |
| Confidence: HIGH | | |
|~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~| | |
| Job: mend | | |
| Checkout Ref: ${{ steps.set_ref.outputs.ref }} | | |
| Step If-check: EVALUATED: success() | | |
|==============================================================================| |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment