Y
Hacker News
new
|
ask
|
show
|
jobs
by
t0mas88
188 days ago
But the attacker could just create a branch, merge request and then merge that?
2 comments
benoau
188 days ago
They can't with git by itself, but if you're also signed in to GitHub or BitBucket's CLI with an account able to approve merges they could use those tools.
link
x0x0
188 days ago
We require review on PRs before they can be merged.
link