Преглед на файлове

Set read-all permission to GITHUB_TOKEN for CI jobs

Frédéric Guillot преди 4 години
родител
ревизия
9e3ce3f3a4
променени са 4 файла, в които са добавени 7 реда и са изтрити 0 реда
  1. 2 0
      .github/workflows/ci.yml
  2. 2 0
      .github/workflows/codeql-analysis.yml
  3. 1 0
      .github/workflows/docker.yml
  4. 2 0
      .github/workflows/linters.yml

+ 2 - 0
.github/workflows/ci.yml

@@ -1,4 +1,6 @@
 name: CI Workflow
 name: CI Workflow
+permissions: read-all
+
 on:
 on:
   pull_request:
   pull_request:
     branches:
     branches:

+ 2 - 0
.github/workflows/codeql-analysis.yml

@@ -11,6 +11,8 @@
 #
 #
 name: "CodeQL"
 name: "CodeQL"
 
 
+permissions: read-all
+
 on:
 on:
   push:
   push:
     branches: [ master ]
     branches: [ master ]

+ 1 - 0
.github/workflows/docker.yml

@@ -1,4 +1,5 @@
 name: Docker
 name: Docker
+permissions: read-all
 on:
 on:
   schedule:
   schedule:
     - cron: '0 1 * * *'
     - cron: '0 1 * * *'

+ 2 - 0
.github/workflows/linters.yml

@@ -1,4 +1,6 @@
 name: Linters
 name: Linters
+permissions: read-all
+
 on:
 on:
   pull_request:
   pull_request:
     branches:
     branches: