4fcb25e7ef
Thanks to @thommyhh for this contribution! Unless the `SSH_AUTH_SOCK` is configured explicitly, this change will make the SSH agent use a random file name for the socket. That way, multiple, concurrent SSH agents can be used on non-ephemeral, self-hosted runners. A new post-action step will automatically clean up the running agent at the end of a job. Be aware of the possible security implications: Two jobs running on the same runner might be able to access each other's socket and thus access repositories and/or hosts.
15 lines
447 B
YAML
15 lines
447 B
YAML
name: 'webfactory/ssh-agent'
|
|
description: 'Run `ssh-agent` and load an SSH key to access other private repositories'
|
|
inputs:
|
|
ssh-private-key:
|
|
description: 'Private SSH key to register in the SSH agent'
|
|
required: true
|
|
ssh-auth-sock:
|
|
description: 'Where to place the SSH Agent auth socket'
|
|
runs:
|
|
using: 'node12'
|
|
main: 'dist/index.js'
|
|
post: 'dist/cleanup.js'
|
|
branding:
|
|
icon: loader
|
|
color: 'yellow'
|