openstack
/
openstack-ansible-pip_install
Code Issues Proposed changes
openstack-ansible-pip_install/tasks
History
Jean-Philippe Evrard 039d884e29 Ensure get-pip cannot be modified 
We don't ensure the permissions of the fetched file on the
download location. Sadly /tmp is a known place where users can
write files.

This is a problem, as a potential race condition could appear,
where get-pip is modifiable on /tmp/ folder by another user,
leading to privilege escalation.

Change-Id: I041db3412e228efe8a0d9a87f4cfba206482c729
 		2018-08-17 16:24:40 +00:00
..
configure.yml Remove pip_lock_to_internal_repo variable 2018-02-18 15:49:16 +00:00
install.yml Allow the role to only configure pip, not install it 2018-08-01 15:48:03 +01:00
install_offline.yml Ensure get-pip cannot be modified 2018-08-17 16:24:40 +00:00
install_online.yml Fix usage of "|" for tests 2018-07-12 17:02:41 +02:00
install_source.yml Merge "Ensure the fallback uses the same install method" 2018-07-19 11:18:21 +00:00
main.yml Allow the role to only configure pip, not install it 2018-08-01 15:48:03 +01:00