Mirrors/flux2
1
0
Fork 0
mirror of synced 2026-03-15 07:46:56 +00:00
Code Issues Packages Projects Releases Wiki Activity

Merge pull request #3232 from eddie-knight/fix/workflow-permissions

Browse Source 
Additional workflow permissions tweaks
This commit is contained in:
Stefan Prodan
2022-10-20 21:15:55 +03:00
committed by GitHub
parent 138cba6e57 73692df272
commit 6f6c097980
3 changed files with 6 additions and 8 deletions
Download Patch File Download Diff File Expand all files Collapse all files

4
.github/workflows/release-manifests.yml vendored
View File

@@ -8,11 +8,11 @@ permissions:
contents: read
jobs:
build-push:
runs-on: ubuntu-latest
permissions:
id-token: write # needed for keyless signing
packages: write # needed for ghcr access
build-push:
runs-on: ubuntu-latest
steps:
- uses: actions/checkout@v3
- name: Setup Kustomize

4
.github/workflows/release.yaml vendored
View File

@@ -5,9 +5,7 @@ on:
tags: [ 'v*' ]
permissions:
contents: write # needed to write releases
id-token: write # needed for keyless signing
packages: write # needed for ghcr access
contents: read
jobs:
goreleaser:

4
.github/workflows/scan.yaml vendored
View File

@@ -51,10 +51,10 @@ jobs:
sarif_file: snyk.sarif
codeql:
permissions:
security-events: write # for codeQL to write security events
name: CodeQL
runs-on: ubuntu-latest
permissions:
security-events: write # for codeQL to write security events
if: github.actor != 'dependabot[bot]'
steps:
- name: Checkout repository