注: GitHub 托管的运行器目前在 GitHub Enterprise Server 上不受支持。 您可以在 GitHub 公共路线图 上查看有关未来支持计划的更多信息。
About automatic access to GitHub.com actions
By default, GitHub Actions workflows on GitHub Enterprise Server cannot use actions directly from GitHub.com or GitHub Marketplace. To make all actions from GitHub.com available on your enterprise instance, you can use GitHub Connect to integrate GitHub Enterprise Server with GitHub Enterprise Cloud.
To use actions from GitHub.com, both 您的 GitHub Enterprise Server 实例 and your self-hosted runners must be able to make outbound connections to GitHub.com. No inbound connections from GitHub.com are required. For more information. 更多信息请参阅“关于自托管的运行器”。
Alternatively, if you want stricter control over which actions are allowed in your enterprise, you can manually download and sync actions onto your enterprise instance using the actions-sync
tool. For more information, see "Manually syncing actions from GitHub.com."
About resolution for actions using GitHub Connect
When a workflow uses an action by referencing the repository where the action is stored, GitHub Actions will first try to find the repository on 您的 GitHub Enterprise Server 实例. If the repository does not exist on 您的 GitHub Enterprise Server 实例, and if you have automatic access to GitHub.com enabled, GitHub Actions will try to find the repository on GitHub.com.
If a user has already created an organization and repository in your enterprise that matches an organization and repository name on GitHub.com, the repository on your enterprise will be used instead of the GitHub.com repository. A malicious user could take advantage of this behavior to run code as part of a workflow
Enabling automatic access to all GitHub.com actions
Before enabling access to all actions from GitHub.com for your enterprise, you must:
- Configure 您的 GitHub Enterprise Server 实例 to use GitHub Actions. For more information, see "Getting started with GitHub Actions for GitHub Enterprise Server."
- Enable GitHub Connect. For more information, see "Managing GitHub Connect."
-
在 GitHub Enterprise Server 的右上角,单击您的个人资料照片,然后单击 Enterprise settings(Enterprise 设置)。
-
在企业帐户边� �中,单击 GitHub Connect。
-
Under "Users can utilize actions from GitHub.com in workflow runs", use the drop-down menu and select Enabled.
-
在启用 GitHub Connect 后,您可以使用策略限制哪些公共操作可用于您企业的仓库中。 更多信息请参阅“为企业执行 GitHub Actions 策略”。