https://github.com/instacode/lockdown

A github action that restricts build execution to specific users
https://github.com/instacode/lockdown

actions continuous-integration security

Last synced: 2 months ago
JSON representation

A github action that restricts build execution to specific users

Host: GitHub
URL: https://github.com/instacode/lockdown
Owner: InstaCode
License: mit
Created: 2020-03-04T05:09:04.000Z (over 6 years ago)
Default Branch: master
Last Pushed: 2023-01-24T20:01:54.000Z (over 3 years ago)
Last Synced: 2025-08-15T02:34:05.019Z (10 months ago)
Topics: actions, continuous-integration, security
Language: TypeScript
Homepage:
Size: 1020 KB
Stars: 0
Watchers: 1
Forks: 1
Open Issues: 25
Metadata Files:
- Readme: README.md
- License: LICENSE

Awesome Lists containing this project

README

# Lockdown CI Security

![build-test](https://github.com/InstaCode/lockdown/workflows/build-test/badge.svg)
[![Quality Gate Status](https://sonarcloud.io/api/project_badges/measure?project=InstaCode_lockdown&metric=alert_status)](https://sonarcloud.io/dashboard?id=InstaCode_lockdown)

This GitHub action restricts the build from continuing to execution unless the author of the commit/pull request is among a list of approved users.

Example: Only repo owner can execute builds. Orgs and teams not supported yet.
```yaml
- uses: InstaCode/lockdown@v1.1
```

Example: Repo Owner is assumed permitted with one additional user.
```yaml
- uses: InstaCode/lockdown@v1.1
with:
users: dependabot-preview
```

Example: Repo Owner is held to strict rules and must be listed in
```yaml
- uses: InstaCode/lockdown@v1.1
with:
users: fake-user, dependabot-preview
strict: true
```

The `users` property accepts a comma delimited list of valid github usernames that will be trimmed during processing.

ecosyste.ms

Data

Tools

Indexes

Applications

Experiments

Awesome

https://github.com/instacode/lockdown

Awesome Lists containing this project

README