Explorar el Código

chore: try to defend against cache poisoning in PR

jamesread hace 1 mes
padre
commit
14dd0f6b56
Se han modificado 1 ficheros con 6 adiciones y 1 borrados
  1. 6 1
      .github/workflows/build-and-release.yml

+ 6 - 1
.github/workflows/build-and-release.yml

@@ -28,12 +28,17 @@ jobs:
           image: tonistiigi/binfmt:latest
           image: tonistiigi/binfmt:latest
           platforms: arm64,arm
           platforms: arm64,arm
 
 
-      - name: Setup node
+      - name: Setup node (npm cache)
+        if: github.event_name != 'pull_request'
         uses: actions/setup-node@v6.4.0
         uses: actions/setup-node@v6.4.0
         with:
         with:
           cache: 'npm'
           cache: 'npm'
           cache-dependency-path: frontend/package-lock.json
           cache-dependency-path: frontend/package-lock.json
 
 
+      - name: Setup node
+        if: github.event_name == 'pull_request'
+        uses: actions/setup-node@v6.4.0
+
       - name: Setup Go
       - name: Setup Go
         uses: actions/setup-go@v6
         uses: actions/setup-go@v6
         with:
         with: