diff options
| author | Sam Doran <sdoran@redhat.com> | 2021-04-29 10:26:23 -0400 |
|---|---|---|
| committer | Matt Clay <matt@mystile.com> | 2021-04-29 14:03:35 -0700 |
| commit | 51d1ab036dd179f22972b32b37793fc6d1dbae3d (patch) | |
| tree | 2ea0692c8957224f826fb15168e6d534e80e1b6c | |
| parent | ccf646d3a6f057c8c80ead500f4b03f4462e3a74 (diff) | |
| download | ansible-51d1ab036dd179f22972b32b37793fc6d1dbae3d.tar.gz | |
[stable-2.11] Use our own copy of the Codecov uploader (#74460)
Due to the recent security incident, use our own copy hosted in S3
to mitigate future risk from running an arbitrary script downloaded from a
remote and untrtusted server.
(cherry picked from commit aa12af1d34)
Co-authored-by: Sam Doran <sdoran@redhat.com>
| -rwxr-xr-x | .azure-pipelines/scripts/publish-codecov.sh | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/.azure-pipelines/scripts/publish-codecov.sh b/.azure-pipelines/scripts/publish-codecov.sh index 7aeabda0c0..6d184f0b8d 100755 --- a/.azure-pipelines/scripts/publish-codecov.sh +++ b/.azure-pipelines/scripts/publish-codecov.sh @@ -7,7 +7,7 @@ set -o pipefail -eu output_path="$1" -curl --silent --show-error https://codecov.io/bash > codecov.sh +curl --silent --show-error https://ansible-ci-files.s3.us-east-1.amazonaws.com/codecov/codecov.sh > codecov.sh for file in "${output_path}"/reports/coverage*.xml; do name="${file}" |