most-mouse-38002
03/10/2023, 8:48 AMaction:*
, but I also can’t help every single developer with what ever minor action they need added to their runner (it also pollutes our Pulumi Service history with a bunch of failures). I know I have asked this before, but I would love to get some input from real world experience. Do people actually list out every specific action in each GitHub Action, or do they use wildcards?billowy-army-68599
03/10/2023, 3:37 PMmost-mouse-38002
03/10/2023, 3:42 PMs3:*
if it needs S3 access. After all assuming GitHub Actions (enterprise) are secure, main branch protected and we are using idp for actions it should be fairly unlikely that someone manages to do a lot of harm to our infrastructure.