hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2026-01-06 11:10:23 +01:00
Code Issues Packages Projects Releases Wiki Activity

Add workflow_dispatch to the triggers for artifact poisoning

Browse Source
This commit is contained in:
Alvaro Muñoz
2024-04-02 12:54:42 +02:00
parent 152d29da38
commit 2a1226c37a
1 changed files with 1 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
ql/src/Security/CWE-829/ArtifactPoisoning.ql
View File

@@ -16,7 +16,7 @@ import codeql.actions.security.ArtifactPoisoningQuery
from LocalJob job, ArtifactDownloadStep download, Step run
where
job.getWorkflow().getATriggerEvent() = "workflow_run" and
job.getWorkflow().getATriggerEvent() = ["workflow_run", "workflow_dispatch"] and
(run instanceof Run or run instanceof UsesStep) and
exists(int i, int j |
job.getStep(i) = download and