Skip to content

Show a warning in workflow runs suspect of building in the publish job #324

New issue
New issue
Open
Open
Show a warning in workflow runs suspect of building in the publish job#324
Labels
enhancementNew feature or request
@webknjaz

Description

@webknjaz
webknjaz
opened on Jan 20, 2025

Previously, I didn't know if it's possible to detect. However, I just occurred to me that this can be inferred from the environment state. I think that we should be able to inspect the presence of other actions being checked out on disk to see if there's anything beyond pypa/gh-action-pypi-publish and actions/download-artifact present in the actions cache directory.

Activity

webknjaz
added
enhancementNew feature or request
on Jan 20, 2025
webknjaz

webknjaz commented on May 30, 2025

@webknjaz
webknjaz
on May 30, 2025 · edited by webknjaz
MemberAuthor

I just realized that it's as simple as detecting the presence of .git/ in CWD. Somebody downloading artifacts from another job wouldn't use actions/checkout and so there wouldn't be a Git repository in the first place. #363 is what inspired me with this idea.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Metadata

Metadata

Assignees

No one assigned

    Labels

    enhancementNew feature or request

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions
      Show a warning in workflow runs suspect of building in the publish job · Issue #324 · pypa/gh-action-pypi-publish