You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Describe the bug
Error "fetch failed" when using proxy on a self-hosted runner with a proxy with least privelege network access, and these domains are allowed:
api.deps.dev
api.securityscorecards.dev
2024-08-16T06:36:11.3271510Z Dependency review did not detect any denied packages
2024-08-16T06:36:31.3476555Z ##[error]fetch failed
To Reproduce
Steps to reproduce the behavior:
Set up a self-hosted runner with least privelege network access
Hey @lindeberg thanks for reporting this. If you disable the OpenSSF scorecards does the fetch still fail? show-openssf-scorecard: false Trying to narrow down the causes here
We experience this issue as well using proxy. Rolling back to actions/dependency-review-action@v3.1.4 works. It seems like issue is introduced when upgrading to node 20.
Describe the bug
Error "fetch failed" when using proxy on a self-hosted runner with a proxy with least privelege network access, and these domains are allowed:
2024-08-16T06:36:11.3271510Z Dependency review did not detect any denied packages 2024-08-16T06:36:31.3476555Z ##[error]fetch failed
To Reproduce
Steps to reproduce the behavior:
Expected behavior
It should be all good!
Screenshots
Action version
v4.3.4
The text was updated successfully, but these errors were encountered: