>for which we run builds. 1) You should not allow the execution of untrusted code (e.g. PR) in the ASF infrastructure. As far as I understand, nothing prevents putting malicious code in the Jenkinsfile, then ASF Jenkins would execute it and reveal the passwords or whatever.
2) Why do you need `website` executors for building PRs? Are you updating the website based on the PR? Vladimir
