Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

chore: set workflow permissions #2229

Closed
DerekRoberts opened this issue Jan 8, 2025 · 0 comments · Fixed by #2258 or #2257
Closed

chore: set workflow permissions #2229

DerekRoberts opened this issue Jan 8, 2025 · 0 comments · Fixed by #2258 or #2257
Assignees
@DerekRoberts
Labels
enhancement New feature or request

Comments

@DerekRoberts
Copy link
Member

DerekRoberts commented Jan 8, 2025
edited
Loading

This will soon start generating alerts if we don't fix it.

https://docs.github.com/en/actions/writing-workflows/choosing-what-your-workflow-does/controlling-permissions-for-github_token

From #459:

Follows GitHub's best practices. Limit GITHUB_TOKEN's permissions (e.g. read only) to prevent misuse, like if an Action is compromised.

https://docs.github.com/en/actions/security-guides/security-hardening-for-github-actions
@DerekRoberts DerekRoberts self-assigned this Jan 8, 2025
@DerekRoberts DerekRoberts added the enhancement New feature or request label Jan 8, 2025
@DerekRoberts DerekRoberts moved this from New to Active in DevOps (NR) Jan 8, 2025
@DerekRoberts DerekRoberts mentioned this issue Jan 28, 2025
Merged
This was linked to pull requests Jan 28, 2025
fix(ci): trivy permissions #2258
Merged
chore(ci): dial down workflow permissions #2257
Merged
@github-project-automation github-project-automation bot moved this from Active to Done in DevOps (NR) Jan 28, 2025
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@DerekRoberts DerekRoberts

Labels
enhancement New feature or request
Projects
DevOps (NR)
Status: Done
Milestone
No milestone
1 participant
@DerekRoberts