Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[BUG] Github Actions: set top-level permissions #2860

Closed
psilva-veeam opened this issue May 6, 2024 · 1 comment · Fixed by #2861
Closed

[BUG] Github Actions: set top-level permissions #2860

psilva-veeam opened this issue May 6, 2024 · 1 comment · Fixed by #2861
Labels
bug triage
Projects
Kanister

Comments

@psilva-veeam
Copy link
Contributor

Describe the bug

Set top-level permissions for Github Actions to contents: read. If needed, individual jobs can still get higher permissions.

https://docs.github.com/en/actions/using-workflows/workflow-syntax-for-github-actions#permissions

To Reproduce

Dependabot status

Expected behavior

Top-level permissions for Github Actions set to contents: read resulting in no issues from Dependabot

Screenshots

Environment

Github Actions

Additional context

kastenhq/kubestr#242
psilva-veeam added a commit that referenced this issue May 6, 2024
@psilva-veeam
Github Actions: set top level permissions (#2860)
ca7f38a
@psilva-veeam psilva-veeam mentioned this issue May 6, 2024
Merged
7 tasks
@github-actions github-actions bot added the triage label May 6, 2024
@github-actions GitHub Actions
Copy link

github-actions bot commented May 6, 2024

Thanks for opening this issue 👍. The team will review it shortly.

If this is a bug report, make sure to include clear instructions how on to reproduce the problem with minimal reproducible examples, where possible. If this is a security report, please review our security policy as outlined in SECURITY.md.

If you haven't already, please take a moment to review our project's Code of Conduct document.

@infraq infraq added this to To Be Triaged in Kanister May 6, 2024
julio-lopez pushed a commit that referenced this issue May 8, 2024
@psilva-veeam
Github Actions: set top level permissions (#2860) (#2861)
859e18a
Kanister automation moved this from To Be Triaged to Done May 8, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
bug triage
Projects
Kanister
Done
Milestone
No milestone
Development

Successfully merging a pull request may close this issue.

Github Actions: set top level permissions (#2860) kanisterio/kanister
1 participant
@psilva-veeam