Naveen
|
bd1434fcb2
|
Set permissions for GitHub actions (#6820)
- Included permissions for the action. https://github.com/ossf/scorecard/blob/main/docs/checks.md#token-permissions
https://docs.github.com/en/actions/using-workflows/workflow-syntax-for-github-actions#permissions
https://docs.github.com/en/actions/using-jobs/assigning-permissions-to-jobs
[Keeping your GitHub Actions and workflows secure Part 1: Preventing pwn requests](https://securitylab.github.com/research/github-actions-preventing-pwn-requests/)
Restrict the GitHub token permissions only to the required ones; this way, even if the attackers will succeed in compromising your workflow, they won’t be able to do much.
Signed-off-by: naveensrinivasan <172697+naveensrinivasan@users.noreply.github.com>
Signed-off-by: naveensrinivasan <172697+naveensrinivasan@users.noreply.github.com>
|
2022-08-11 10:05:58 +02:00 |
dependabot[bot]
|
7a7904cc9d
|
chore(deps): bump actions/setup-node from 2 to 3 (#6754)
|
2022-03-07 22:36:30 +00:00 |
|
dependabot[bot]
|
34508771cf
|
chore(deps): bump actions/checkout from 2 to 3 (#6753)
|
2022-03-07 22:33:24 +00:00 |
ImVector
|
c4d9b4db81
|
Update workflows version (#6682)
|
2022-02-15 10:38:57 -05:00 |
Debajyoti Ghosh
|
09bbc1c2d9
|
use current node-version 16 (#5587)
|
2021-09-30 13:40:06 -04:00 |
Eric Hellman
|
5538fb1c21
|
add linter action to pullrequest (#5251)
|
2021-01-12 15:44:08 -05:00 |
victor felder
|
8530b47797
|
fix: CI linter config (#5239)
* fix: CI linter config
* chore: lint all files
|
2020-12-28 12:19:50 -05:00 |
borgified
|
37dc474fbd
|
migrate fpb-lint from travisci to gh actions (#5186)
|
2020-11-29 18:39:35 -05:00 |