github-starred/open-webui
2
0
Fork 0
mirror of https://github.com/open-webui/open-webui.git synced 2026-05-07 19:38:46 -05:00
Code Issues 1.3k Packages Projects Releases 126 Wiki Activity

[PR #23064] [CLOSED] fix: pin 49 unpinned action(s),extract 4 unsafe expression(s) to env vars #42636

New Issue
Closed
opened 2026-04-25 14:27:43 -05:00 by GiteaMirror · 0 comments
GiteaMirror commented 2026-04-25 14:27:43 -05:00
Owner
Copy Link

📋 Pull Request Information

Original PR: https://github.com/open-webui/open-webui/pull/23064
Author: @dagecko
Created: 3/26/2026
Status: Closed

Base: mainHead: runner-guard/fix-ci-security

📝 Commits (1)

  • 3f1ca43 fix: pin 49 unpinned action(s),extract 4 unsafe expression(s) to env vars

📊 Changes

2 files changed (+60 additions, -53 deletions)

View changed files

📝 .github/workflows/docker-build.yaml (+59 -52)
📝 .github/workflows/release-pypi.yml (+1 -1)

📄 Description

Fix: CI/CD Security Vulnerabilities in GitHub Actions

Hi! Runner Guard, an open-source
CI/CD security scanner by Vigilant Cyber Security,
identified security vulnerabilities in this repository's GitHub Actions workflows.

This PR applies automated fixes where possible and reports additional findings
for your review.

Fixes applied (in this PR)

Rule Severity File Description
RGS-007 high .github/workflows/docker-build.yaml Pinned 48 third-party action(s) to commit SHA
RGS-002 high .github/workflows/docker-build.yaml Extracted 4 unsafe expression(s) to env vars
RGS-007 high .github/workflows/release-pypi.yml Pinned 1 third-party action(s) to commit SHA

Advisory: additional findings (manual review recommended)

| Rule | Severity | File | Description |
| RGS-003 | high | .github/workflows/docker-build.yaml | Filename Injection via Git Diff or File Listing |
| RGS-003 | high | .github/workflows/docker-build.yaml | Filename Injection via Git Diff or File Listing |
| RGS-003 | high | .github/workflows/docker-build.yaml | Filename Injection via Git Diff or File Listing |
| RGS-003 | high | .github/workflows/docker-build.yaml | Filename Injection via Git Diff or File Listing |
| RGS-003 | high | .github/workflows/docker-build.yaml | Filename Injection via Git Diff or File Listing |
| RGS-003 | high | .github/workflows/docker-build.yaml | Filename Injection via Git Diff or File Listing |

Why this matters

GitHub Actions workflows that use untrusted input in run: blocks, expose
secrets inline, or use unpinned third-party actions are vulnerable to
code injection, credential theft, and supply chain attacks. These are the same
vulnerability classes exploited in the tj-actions/changed-files incident
and subsequent supply chain attacks, which compromised CI secrets across
thousands of repositories.

How to verify

Review the diff — each change is mechanical and preserves workflow behavior:

  • Expression extraction (RGS-002/008/014): Moves ${{ }} expressions from
    run: blocks into env: mappings, preventing shell injection
  • SHA pinning (RGS-007): Pins third-party actions to immutable commit SHAs
    (original version tag preserved as comment)
  • Debug env removal (RGS-015): Removes ACTIONS_RUNNER_DEBUG/ACTIONS_STEP_DEBUG
    which leak secrets in workflow logs

Run brew install Vigilant-LLC/tap/runner-guard && runner-guard scan . or install from the
repo to verify.

Found by Runner Guard | Built by Vigilant Cyber Security | Learn more

If this PR is not welcome, just close it -- we won't send another.

🔄 This issue represents a GitHub Pull Request. It cannot be merged through Gitea due to API limitations.

## 📋 Pull Request Information **Original PR:** https://github.com/open-webui/open-webui/pull/23064 **Author:** [@dagecko](https://github.com/dagecko) **Created:** 3/26/2026 **Status:** ❌ Closed **Base:** `main` ← **Head:** `runner-guard/fix-ci-security` --- ### 📝 Commits (1) - [`3f1ca43`](https://github.com/open-webui/open-webui/commit/3f1ca4339b5a11d568a119fc753949b76b5e569c) fix: pin 49 unpinned action(s),extract 4 unsafe expression(s) to env vars ### 📊 Changes **2 files changed** (+60 additions, -53 deletions) <details> <summary>View changed files</summary> 📝 `.github/workflows/docker-build.yaml` (+59 -52) 📝 `.github/workflows/release-pypi.yml` (+1 -1) </details> ### 📄 Description ## Fix: CI/CD Security Vulnerabilities in GitHub Actions Hi! [Runner Guard](https://github.com/Vigilant-LLC/runner-guard), an open-source CI/CD security scanner by [Vigilant Cyber Security](https://www.vigilantdefense.com), identified security vulnerabilities in this repository's GitHub Actions workflows. This PR applies automated fixes where possible and reports additional findings for your review. ### Fixes applied (in this PR) | Rule | Severity | File | Description | |------|----------|------|-------------| | RGS-007 | high | `.github/workflows/docker-build.yaml` | Pinned 48 third-party action(s) to commit SHA | | RGS-002 | high | `.github/workflows/docker-build.yaml` | Extracted 4 unsafe expression(s) to env vars | | RGS-007 | high | `.github/workflows/release-pypi.yml` | Pinned 1 third-party action(s) to commit SHA | ### Advisory: additional findings (manual review recommended) | Rule | Severity | File | Description | | RGS-003 | high | `.github/workflows/docker-build.yaml` | Filename Injection via Git Diff or File Listing | | RGS-003 | high | `.github/workflows/docker-build.yaml` | Filename Injection via Git Diff or File Listing | | RGS-003 | high | `.github/workflows/docker-build.yaml` | Filename Injection via Git Diff or File Listing | | RGS-003 | high | `.github/workflows/docker-build.yaml` | Filename Injection via Git Diff or File Listing | | RGS-003 | high | `.github/workflows/docker-build.yaml` | Filename Injection via Git Diff or File Listing | | RGS-003 | high | `.github/workflows/docker-build.yaml` | Filename Injection via Git Diff or File Listing | ### Why this matters GitHub Actions workflows that use untrusted input in `run:` blocks, expose secrets inline, or use unpinned third-party actions are vulnerable to code injection, credential theft, and supply chain attacks. These are the same vulnerability classes exploited in the [tj-actions/changed-files incident](https://www.vigilantdefense.com/resources/runner-guard) and subsequent supply chain attacks, which compromised CI secrets across thousands of repositories. ### How to verify Review the diff — each change is mechanical and preserves workflow behavior: - **Expression extraction** (RGS-002/008/014): Moves `${{ }}` expressions from `run:` blocks into `env:` mappings, preventing shell injection - **SHA pinning** (RGS-007): Pins third-party actions to immutable commit SHAs (original version tag preserved as comment) - **Debug env removal** (RGS-015): Removes `ACTIONS_RUNNER_DEBUG`/`ACTIONS_STEP_DEBUG` which leak secrets in workflow logs Run `brew install Vigilant-LLC/tap/runner-guard && runner-guard scan .` or install from the [repo](https://github.com/Vigilant-LLC/runner-guard) to verify. --- Found by [Runner Guard](https://github.com/Vigilant-LLC/runner-guard) | Built by [Vigilant Cyber Security](https://www.vigilantdefense.com) | [Learn more](https://www.vigilantdefense.com/resources/runner-guard) If this PR is not welcome, just close it -- we won't send another. --- <sub>🔄 This issue represents a GitHub Pull Request. It cannot be merged through Gitea due to API limitations.</sub>
GiteaMirror added the pull-request label 2026-04-25 14:27:43 -05:00
Sign in to join this conversation.
No Branch/Tag Specified
Branches Tags
Labels
Clear labels
bug
confirmed
confirmed issue
core
documentation
enhancement
good first issue
help wanted
non-core
pull-request
Mirrored from GitHub Pull Request
 python
question
testing wanted
No Label pull-request
Milestone
No items
No Milestone
Projects
Clear projects
No project
Assignees
Clear assignees
GiteaMirror ninjasurge
No Assignees
1 Participants
Notifications
Due Date
No due date set.
Dependencies

No dependencies set.

Reference: github-starred/open-webui#42636
Delete Branch "%!s()"

Deleting a branch is permanent. Although the deleted branch may continue to exist for a short time before it actually gets removed, it CANNOT be undone in most cases. Continue?