safedep/vet
1
0
Fork 0
mirror of https://github.com/safedep/vet.git synced 2025-12-10 13:43:01 -06:00
Code Issues Packages Projects Releases 68 Wiki Activity

Add top level permission for GH actions

Browse Source
This commit is contained in:
abhisek 2023-02-19 17:55:50 +05:30
parent 0475f5faf2
commit e8cebfa539
No known key found for this signature in database
GPG Key ID: CB92A4990C02A88F
3 changed files with 10 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

3
.github/workflows/codeql.yml vendored
View File

@ -18,6 +18,9 @@ on:
# The branches below must be a subset of the branches above # The branches below must be a subset of the branches above
branches: [ "main" ] branches: [ "main" ]
permissions:
contents: read
jobs: jobs:
analyze: analyze:
if: "!contains(github.event.commits[0].message, '[noci]')" if: "!contains(github.event.commits[0].message, '[noci]')"

3
.github/workflows/container.yml vendored
View File

@ -7,6 +7,9 @@ on:
branches: branches:
- "main" - "main"
permissions:
contents: read
env: env:
REGISTRY: ghcr.io REGISTRY: ghcr.io
IMAGE_NAME: ${{ github.repository }} IMAGE_NAME: ${{ github.repository }}

4
.github/workflows/secret_scan.yml vendored
View File

@ -3,6 +3,10 @@ on:
pull_request: pull_request:
branches: branches:
- main - main
permissions:
contents: read
jobs: jobs:
trufflehog: trufflehog:
runs-on: ubuntu-latest runs-on: ubuntu-latest