Skip to content

Can I add myself to privileged-requester.yaml or set commitVerification: false in the PR and get auto approved/impersonate? #177

New issue
New issue
Open
Open
Can I add myself to privileged-requester.yaml or set commitVerification: false in the PR and get auto approved/impersonate?#177
Labels
enhancementNew feature or request
@lawrencegripper

Description

@lawrencegripper
lawrencegripper
opened on Sep 25, 2024

Sorry if there is a mitigation in here I've missed, wanted to validate if this was possible.

Is it possible, for example, to edit the privileged-requester.yaml file in the PR where I make my changes so that it includes my user as a privileged requestor?

In a similar issue to the one @nobe4 mentioned 👇 , could I set commitVerification to false in the branch to allow impersonation and then push as the bot user with unsigned commits?

I think these would be mitigated by reading the configuration from the default branch rather than from the PR branch but I'm not sure how to work that with

Metadata

Metadata

Assignees

No one assigned

    Labels

    enhancementNew feature or request

    Type

    No type

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions