ch0ic3/free-programming-books
1
0
Fork 0
mirror of https://github.com/EbookFoundation/free-programming-books.git synced 2024-12-20 10:26:13 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity
7,191 Commits 14 Branches 0 Tags 893 MiB
d9d3c34593
Commit Graph

15 Commits

Author SHA1 Message Date
Naveen
bd1434fcb2
Set permissions for GitHub actions (#6820) 
- Included permissions for the action. https://github.com/ossf/scorecard/blob/main/docs/checks.md#token-permissions

https://docs.github.com/en/actions/using-workflows/workflow-syntax-for-github-actions#permissions

https://docs.github.com/en/actions/using-jobs/assigning-permissions-to-jobs

[Keeping your GitHub Actions and workflows secure Part 1: Preventing pwn requests](https://securitylab.github.com/research/github-actions-preventing-pwn-requests/)

 Restrict the GitHub token permissions only to the required ones; this way, even if the attackers will succeed in compromising your workflow, they won’t be able to do much.

Signed-off-by: naveensrinivasan <172697+naveensrinivasan@users.noreply.github.com>

Signed-off-by: naveensrinivasan <172697+naveensrinivasan@users.noreply.github.com>
 2022-08-11 10:05:58 +02:00
ImVector
4a549b9f10
build: changed name of 'main.yml' workflow to 'checkurls.yml' (#6984) 2022-08-07 22:20:34 +02:00
dependabot[bot]
1c016ad461
chore(deps): bump actions/upload-artifact from 2 to 3 (#6821) 
Bumps [actions/upload-artifact](https://github.com/actions/upload-artifact) from 2 to 3.
- [Release notes](https://github.com/actions/upload-artifact/releases)
- [Commits](https://github.com/actions/upload-artifact/compare/v2...v3)

---
updated-dependencies:
- dependency-name: actions/upload-artifact
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2022-04-11 09:32:25 -04:00
dependabot[bot]
7a7904cc9d
chore(deps): bump actions/setup-node from 2 to 3 (#6754) 2022-03-07 22:36:30 +00:00
dependabot[bot]
34508771cf
chore(deps): bump actions/checkout from 2 to 3 (#6753) 2022-03-07 22:33:24 +00:00
ImVector
c4d9b4db81
Update workflows version (#6682) 2022-02-15 10:38:57 -05:00
Debajyoti Ghosh
09bbc1c2d9
use current node-version 16 (#5587) 2021-09-30 13:40:06 -04:00
Eric Hellman
5538fb1c21
add linter action to pullrequest (#5251) 2021-01-12 15:44:08 -05:00
victor felder
8530b47797
fix: CI linter config (#5239) 
* fix: CI linter config

* chore: lint all files
 2020-12-28 12:19:50 -05:00
borgified
ac6fea31bd
Update main.yml (#5203) 2020-12-03 16:59:43 -05:00
borgified
532d3eeafd
Fix file-changes-action error (#5201) 
* test

* apparently 1.2.4 is broken

https://github.com/trilom/file-changes-action/issues/102

* remove noop
 2020-12-03 12:40:06 -05:00
borgified
37dc474fbd
migrate fpb-lint from travisci to gh actions (#5186) 2020-11-29 18:39:35 -05:00
borgified
3daf3a8d26
Improve url checker (#3702) 
* improvements to check_urls

make check have a more descriptive name
produce output file instead

* upload artifacts

* a

* change file to trigger test

* put things back
 2020-09-05 12:28:15 -04:00
borgified
724c2b277c
fix broken urls (#3680) 
* fix broken urls

* trigger on pull request creation too

* allow certificate verify failed

some sites have misconfigured/expired certs

* adding back two links that were manually verified good
 2020-08-25 22:50:12 -04:00
borgified
e59e9e0717
try github actions (#3679) 
fixes #3583
 2020-08-23 13:02:31 -04:00