| From: | Daniel Gustafsson <daniel(at)yesql(dot)se> |
|---|---|
| To: | Tom Lane <tgl(at)sss(dot)pgh(dot)pa(dot)us> |
| Cc: | Justin Pryzby <pryzby(at)telsasoft(dot)com>, Andres Freund <andres(at)anarazel(dot)de>, pgsql-hackers <pgsql-hackers(at)postgresql(dot)org>, Thomas Munro <thomas(dot)munro(at)gmail(dot)com>, Andrew Dunstan <andrew(at)dunslane(dot)net>, Melanie Plageman <melanieplageman(at)gmail(dot)com> |
| Subject: | Re: Adding CI to our tree |
| Date: | 2021-12-15 15:45:52 |
| Message-ID: | 64798FAF-EC55-4CDA-A660-562A3B3B5965@yesql.se |
| Views: | Raw Message | Whole Thread | Download mbox | Resend email |
| Thread: | |
| Lists: | pgsql-hackers |
> On 15 Dec 2021, at 16:21, Tom Lane <tgl(at)sss(dot)pgh(dot)pa(dot)us> wrote:
>
> Justin Pryzby <pryzby(at)telsasoft(dot)com> writes:
>> On Mon, Dec 13, 2021 at 03:45:23PM -0800, Andres Freund wrote:
>>> On 2021-12-13 18:14:52 -0500, Tom Lane wrote:
>>>> I'm with Justin on this one. I would view a script trying to
>>>> mess with /cores as a hostile act.
>
>>> I'm not quite following. This is a ephemeral CI instance?
>
>> As for myself, all I meant is that it's better to write it with zero sudos than
>> one (for the same reason that it's better to write with one than with two).
>
> What I'm concerned about is that it's unsafe to run the script in
> any non-throwaway environment. That doesn't seem desirable.
I don't think anyone should expect any part of the .cirrus.yml script to be
safe or applicable to a local environment, so I think this is something we can
solve with documentation.
--
Daniel Gustafsson https://vmware.com/
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Mikael Kjellström | 2021-12-15 15:47:14 | Re: conchuela has some SSL issues |
| Previous Message | Tom Lane | 2021-12-15 15:44:30 | Re: Privilege required for IF EXISTS event if the object already exists |