Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Prevent slash commands from being triggered on untrusted PRs #13558

Merged
merged 6 commits into from
Oct 28, 2024
Merged

Prevent slash commands from being triggered on untrusted PRs #13558

merged 6 commits into from
Oct 28, 2024

Conversation

harupy
Copy link
Member

@harupy harupy commented Oct 28, 2024
edited by github-actions bot
Loading

🛠 DevTools 🛠

Open in GitHub Codespaces

Install mlflow from this PR

pip install git+https://github.com/mlflow/mlflow.git@refs/pull/13558/merge

Checkout with GitHub CLI

gh pr checkout 13558

Related Issues/PRs

#xxx

What changes are proposed in this pull request?

We support a couple slash commands such as /rerun. It's possible that these commands are exploited to steal secrets registered in this repo. This PR makes changes to only allow them to run on trusted PRs filed from maintainer or collaborators.

How is this PR tested?

  • Existing unit/integration tests
  • New unit/integration tests
  • Manual tests

Does this PR require documentation update?

  • No. You can skip the rest of this section.
  • Yes. I've updated:
    • Examples
    • API references
    • Instructions

Release Notes

Is this a user-facing change?

  • No. You can skip the rest of this section.
  • Yes. Give a description of this change to be included in the release notes for MLflow users.

What component(s), interfaces, languages, and integrations does this PR affect?

Components

  • area/artifacts: Artifact stores and artifact logging
  • area/build: Build and test infrastructure for MLflow
  • area/deployments: MLflow Deployments client APIs, server, and third-party Deployments integrations
  • area/docs: MLflow documentation pages
  • area/examples: Example code
  • area/model-registry: Model Registry service, APIs, and the fluent client calls for Model Registry
  • area/models: MLmodel format, model serialization/deserialization, flavors
  • area/recipes: Recipes, Recipe APIs, Recipe configs, Recipe Templates
  • area/projects: MLproject format, project running backends
  • area/scoring: MLflow Model server, model deployment tools, Spark UDFs
  • area/server-infra: MLflow Tracking server backend
  • area/tracking: Tracking Service, tracking client APIs, autologging

Interface

  • area/uiux: Front-end, user experience, plotting, JavaScript, JavaScript dev server
  • area/docker: Docker use across MLflow's components, such as MLflow Projects and MLflow Models
  • area/sqlalchemy: Use of SQLAlchemy in the Tracking Service or Model Registry
  • area/windows: Windows support

Language

  • language/r: R APIs and clients
  • language/java: Java APIs and clients
  • language/new: Proposals for new client languages

Integrations

  • integrations/azure: Azure and Azure ML integrations
  • integrations/sagemaker: SageMaker integrations
  • integrations/databricks: Databricks integrations

How should the PR be classified in the release notes? Choose one:

  • rn/none - No description will be included. The PR will be mentioned only by the PR number in the "Small Bugfixes and Documentation Updates" section
  • rn/breaking-change - The PR will be mentioned in the "Breaking Changes" section
  • rn/feature - A new user-facing feature worth mentioning in the release notes
  • rn/bug-fix - A user-facing bug fix worth mentioning in the release notes
  • rn/documentation - A user-facing documentation change worth mentioning in the release notes

Should this PR be included in the next patch release?

Yes should be selected for bug fixes, documentation updates, and other small changes. No should be selected for new features and larger changes. If you're unsure about the release classification of this PR, leave this unchecked to let the maintainers decide.

What is a minor/patch release?
  • Minor release: a release that increments the second part of the version number (e.g., 1.2.0 -> 1.3.0).
    Bug fixes, doc updates and new features usually go into minor releases.
  • Patch release: a release that increments the third part of the version number (e.g., 1.2.0 -> 1.2.1).
    Bug fixes and doc updates usually go into patch releases.
  • Yes (this PR will be cherry-picked and included in the next patch release)
  • No (this PR will be included in the next minor release)

@github-actions GitHub Actions
Copy link

github-actions bot commented Oct 28, 2024
edited
Loading

Documentation preview for 4a11f6b will be available when this CircleCI job
completes successfully.

More info

@github-actions github-actions bot added the rn/none List under Small Changes in Changelogs. label Oct 28, 2024
harupy added 2 commits October 28, 2024 13:31
@harupy
core
a8c47c7 
Signed-off-by: harupy <[email protected]>
@harupy
Fix
836cec4 
Signed-off-by: harupy <[email protected]>
B-Step62
B-Step62 approved these changes Oct 28, 2024
View reviewed changes
Copy link
Collaborator

@B-Step62 B-Step62 left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM! Nice security improvement

@harupy
Copy link
Member Author

harupy commented Oct 28, 2024

/rerun

@harupy
nit
4a11f6b 
Signed-off-by: harupy <[email protected]>
@harupy harupy merged commit fedbdf3 into mlflow:master Oct 28, 2024
41 checks passed
@harupy harupy deleted the validate-maintainer-action branch October 28, 2024 08:10
@harupy harupy mentioned this pull request Nov 11, 2024
Merged
39 tasks
dsuhinin pushed a commit to dsuhinin/mlflow that referenced this pull request Nov 14, 2024
@harupy @dsuhinin
Prevent slash commands from being triggered on untrusted PRs (mlflow#…
77685f4 
…13558)

Signed-off-by: harupy <[email protected]>
Signed-off-by: Software Developer <[email protected]>
karthikkurella pushed a commit to karthikkurella/mlflow that referenced this pull request Jan 30, 2025
@harupy @karthikkurella
Prevent slash commands from being triggered on untrusted PRs (mlflow#…
05a80c3 
…13558)

Signed-off-by: harupy <[email protected]>
Signed-off-by: k99kurella <[email protected]>
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@mlflow mlflow[bot] mlflow[bot] left review comments

@B-Step62 B-Step62 B-Step62 approved these changes

@BenWilson2 BenWilson2 Awaiting requested review from BenWilson2

@daniellok-db daniellok-db Awaiting requested review from daniellok-db

@serena-ruan serena-ruan Awaiting requested review from serena-ruan

@WeichenXu123 WeichenXu123 Awaiting requested review from WeichenXu123

@xq-yin xq-yin Awaiting requested review from xq-yin

Assignees
No one assigned
Labels
rn/none List under Small Changes in Changelogs.
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@harupy @B-Step62