GHA-SEC012`continue-on-error: true`
Problem Statement
Can hide failures, resulting in insecure builds.
Vulnerability
Silent Failures and Insecure Builds
Code Examples
Insecure Implementation
- run: make test
continue-on-error: trueSecure Implementation
- run: make test
continue-on-error: falseRemediation Steps
- Use `continue-on-error` only when failure is acceptable.
- Prefer explicit conditional logic like `if: failure()`.