Skip to content

feat: composite action support#331

Merged
woodruffw merged 32 commits intomainfrom
ww/composite-actions
Dec 25, 2024
Merged

feat: composite action support#331
woodruffw merged 32 commits intomainfrom
ww/composite-actions

Conversation

@woodruffw
Copy link
Copy Markdown
Member

@woodruffw woodruffw commented Dec 19, 2024
edited
Loading

Very WIP, just stitching things together.

Closes #173.

Some key limitations:

  • The ignore config doesn't currently support ignoring composite actions

@woodruffw
Copy link
Copy Markdown
Member Author

woodruffw commented Dec 19, 2024

I've started working on this, but I'm now realizing that the trait layout here isn't going to be conducive to a separate ActionAudit, since Rust doesn't have a clean way to cast between traits.

Instead of keeping WorkflowAudit and ActionAudit separate, I think I'm going to rename Audit -> AuditCore and then make WorkflowAudit into a single Audit trait that can handle both workflows and actions. That'll avoid the trait casting pain.

@woodruffw
rename traits, fill in actions models
03f1a4d 
Signed-off-by: William Woodruff <[email protected]>
@woodruffw
more filling in
c0e5524 
Signed-off-by: William Woodruff <[email protected]>
@woodruffw
bump, update API use
e64c4b2 
Signed-off-by: William Woodruff <[email protected]>
@woodruffw
continue to hack
dd624b7 
Signed-off-by: William Woodruff <[email protected]>
@woodruffw
hackety hack
44cd975 
Signed-off-by: William Woodruff <[email protected]>
@woodruffw
Merge remote-tracking branch 'origin/main' into ww/composite-actions
6316c68 
Signed-off-by: William Woodruff <[email protected]>
@woodruffw
fix lints
6c6d7ac 
Signed-off-by: William Woodruff <[email protected]>
@woodruffw
fmt
fbd8b0c 
Signed-off-by: William Woodruff <[email protected]>
@woodruffw
begin plumbing actions via inputs
06f558e 
Signed-off-by: William Woodruff <[email protected]>
@woodruffw
Merge branch 'main' into ww/composite-actions
2df87bc
@woodruffw
make it work
67fb491 
Signed-off-by: William Woodruff <[email protected]>
@woodruffw
uninvert loop
17d88bb 
Signed-off-by: William Woodruff <[email protected]>
@woodruffw
fixup template_injection categorization
6135338 
Signed-off-by: William Woodruff <[email protected]>
@woodruffw woodruffw self-assigned this Dec 21, 2024
@woodruffw woodruffw added the enhancement New feature or request label Dec 21, 2024
@woodruffw
Copy link
Copy Markdown
Member Author

woodruffw commented Dec 21, 2024

There's still a decent amount of cleanup that needs to be done here, but zizmor can now audit actions! Here's what it produces for the vulnerable Ultralytics action (https://github.com/ultralytics/actions/blob/63d2cd98a098f45d5532e3b1ee7715bae66280c2/action.yml):

error[template-injection]: code injection via template expansion
  --> /Users/william/tmp/action.yml:70:7
   |
70 |       - name: Install Dependencies
   |         ^^^^^^^^^^^^^^^^^^^^^^^^^^ this step
71 |         # Note tomli required for codespell with pyproject.toml
...
74 |         #   pip install -q git+https://github.com/ultralytics/actions@main codespell tomli
75 | /       run: |
76 | |         packages="ultralytics-actions"
...  |
87 | |
88 | |         ultralytics-actions-info
   | |________________________________^ inputs.spelling may expand into attacker-controllable code
   |
   = note: audit confidence → Low

error[template-injection]: code injection via template expansion
   --> /Users/william/tmp/action.yml:211:7
    |
211 |       - name: Commit and Push Changes
    |         ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^ this step
212 |         if: (github.event_name == 'pull_request' || github.event_name == 'pull_request_target') && github.event.action != 'closed'
213 | /       run: |
214 | |         git config --global user.name "${{ inputs.github_username }}"
...   |
223 | |           echo "No changes to commit"
224 | |         fi
    | |__________^ inputs.github_username may expand into attacker-controllable code
    |
    = note: audit confidence → Low

error[template-injection]: code injection via template expansion
   --> /Users/william/tmp/action.yml:211:7
    |
211 |       - name: Commit and Push Changes
    |         ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^ this step
212 |         if: (github.event_name == 'pull_request' || github.event_name == 'pull_request_target') && github.event.action != 'closed'
213 | /       run: |
214 | |         git config --global user.name "${{ inputs.github_username }}"
...   |
223 | |           echo "No changes to commit"
224 | |         fi
    | |__________^ inputs.github_email may expand into attacker-controllable code
    |
    = note: audit confidence → Low

error[template-injection]: code injection via template expansion
   --> /Users/william/tmp/action.yml:211:7
    |
211 |       - name: Commit and Push Changes
    |         ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^ this step
212 |         if: (github.event_name == 'pull_request' || github.event_name == 'pull_request_target') && github.event.action != 'closed'
213 | /       run: |
214 | |         git config --global user.name "${{ inputs.github_username }}"
...   |
223 | |           echo "No changes to commit"
224 | |         fi
    | |__________^ github.head_ref may expand into attacker-controllable code
    |
    = note: audit confidence → High

error[template-injection]: code injection via template expansion
   --> /Users/william/tmp/action.yml:211:7
    |
211 |       - name: Commit and Push Changes
    |         ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^ this step
212 |         if: (github.event_name == 'pull_request' || github.event_name == 'pull_request_target') && github.event.action != 'closed'
213 | /       run: |
214 | |         git config --global user.name "${{ inputs.github_username }}"
...   |
223 | |           echo "No changes to commit"
224 | |         fi
    | |__________^ github.ref may expand into attacker-controllable code
    |
    = note: audit confidence → High

5 findings: 0 unknown, 0 informational, 0 low, 0 medium, 5 high

Critically, it catches all three of the template injections (the last 3 findings) that made the action exploitable.

@woodruffw
docs, rename vars
7bfb6d9 
Signed-off-by: William Woodruff <[email protected]>
@woodruffw
models: reject non-composite actions
360f051 
Signed-off-by: William Woodruff <[email protected]>
@woodruffw
docs: begin covering composite actions
e930633 
Signed-off-by: William Woodruff <[email protected]>
@woodruffw
leave myself TODOs
7acc3db 
Signed-off-by: William Woodruff <[email protected]>
@woodruffw
collect composite actions
7697c7e 
Signed-off-by: William Woodruff <[email protected]>
@woodruffw
refactor input registration
b417780 
Signed-off-by: William Woodruff <[email protected]>
@woodruffw
collect remote actions too
7228081 
Signed-off-by: William Woodruff <[email protected]>
@woodruffw
clippy fixes
27195a5 
Signed-off-by: William Woodruff <[email protected]>
@woodruffw
update docs
e6c8f98 
Signed-off-by: William Woodruff <[email protected]>
@woodruffw
docs: tweaks
051f9ad 
Signed-off-by: William Woodruff <[email protected]>
@woodruffw woodruffw mentioned this pull request Dec 23, 2024
Closed
14 tasks
@woodruffw woodruffw marked this pull request as ready for review December 23, 2024 19:25
@woodruffw woodruffw merged commit c28d44c into main Dec 25, 2024
@woodruffw woodruffw deleted the ww/composite-actions branch December 25, 2024 19:53
@woodruffw woodruffw mentioned this pull request Dec 25, 2024
Closed
2 tasks
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

@woodruffw woodruffw

Labels

enhancement New feature or request

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

Feature: support auditing (composite) actions

1 participant

@woodruffw