From ebcfcf49004882f16583b9f96332083383653d63 Mon Sep 17 00:00:00 2001 From: Kevin Jimenez Date: Sun, 12 May 2024 19:02:24 -0400 Subject: [PATCH 1/8] fix (cicd): Adding right permissions to pipelines --- .github/workflows/cd-deploy-to-dev.yml | 2 ++ 1 file changed, 2 insertions(+) diff --git a/.github/workflows/cd-deploy-to-dev.yml b/.github/workflows/cd-deploy-to-dev.yml index 717c3da5..7f3e1ac1 100644 --- a/.github/workflows/cd-deploy-to-dev.yml +++ b/.github/workflows/cd-deploy-to-dev.yml @@ -1,5 +1,7 @@ name: Deploy to dev +permissions: read-all + on: workflow_dispatch: pull_request: From 07ffed1ffc96199710578624181d5c3789f326eb Mon Sep 17 00:00:00 2001 From: Kevin Jimenez Date: Sun, 12 May 2024 19:04:22 -0400 Subject: [PATCH 2/8] Update cd-deploy-to-prod.yml --- .github/workflows/cd-deploy-to-prod.yml | 2 ++ 1 file changed, 2 insertions(+) diff --git a/.github/workflows/cd-deploy-to-prod.yml b/.github/workflows/cd-deploy-to-prod.yml index 9e201269..5d7e406e 100644 --- a/.github/workflows/cd-deploy-to-prod.yml +++ b/.github/workflows/cd-deploy-to-prod.yml @@ -1,5 +1,7 @@ name: Deploy to prod +permissions: read-all + on: release: types: From 410adfe94ed16a5911709135b351b58175d73304 Mon Sep 17 00:00:00 2001 From: Kevin Jimenez Date: Sun, 12 May 2024 19:04:38 -0400 Subject: [PATCH 3/8] Update cd-deploy-to-test.yml --- .github/workflows/cd-deploy-to-test.yml | 2 ++ 1 file changed, 2 insertions(+) diff --git a/.github/workflows/cd-deploy-to-test.yml b/.github/workflows/cd-deploy-to-test.yml index 3f109b40..c6f33a58 100644 --- a/.github/workflows/cd-deploy-to-test.yml +++ b/.github/workflows/cd-deploy-to-test.yml @@ -1,5 +1,7 @@ name: Deploy to test +permissions: read-all + on: workflow_dispatch: push: From bcf25b34e1aaf8e3c858426c887f1d08881def3a Mon Sep 17 00:00:00 2001 From: Kevin Jimenez Date: Sun, 12 May 2024 19:04:50 -0400 Subject: [PATCH 4/8] Update ci-check-linters.yml --- .github/workflows/ci-check-linters.yml | 2 ++ 1 file changed, 2 insertions(+) diff --git a/.github/workflows/ci-check-linters.yml b/.github/workflows/ci-check-linters.yml index fb3f6794..9901bc10 100644 --- a/.github/workflows/ci-check-linters.yml +++ b/.github/workflows/ci-check-linters.yml @@ -1,5 +1,7 @@ name: Lint Code Base +permissions: read-all + on: pull_request: branches: [master] From 66af91032472d851823569730f590b679ff8b564 Mon Sep 17 00:00:00 2001 From: Kevin Jimenez Date: Sun, 12 May 2024 19:04:59 -0400 Subject: [PATCH 5/8] Update ci-unit-tests.yml --- .github/workflows/ci-unit-tests.yml | 2 ++ 1 file changed, 2 insertions(+) diff --git a/.github/workflows/ci-unit-tests.yml b/.github/workflows/ci-unit-tests.yml index 4118c1a4..fb247122 100644 --- a/.github/workflows/ci-unit-tests.yml +++ b/.github/workflows/ci-unit-tests.yml @@ -1,5 +1,7 @@ name: Unit Tests +permissions: read-all + on: workflow_call: inputs: From d3320d1659793a4e1903d59653c4d4d6eb976121 Mon Sep 17 00:00:00 2001 From: Kevin Jimenez Date: Sun, 12 May 2024 19:05:09 -0400 Subject: [PATCH 6/8] Update delete-deployment.yml --- .github/workflows/delete-deployment.yml | 2 ++ 1 file changed, 2 insertions(+) diff --git a/.github/workflows/delete-deployment.yml b/.github/workflows/delete-deployment.yml index 9b7dc18d..dbd00834 100644 --- a/.github/workflows/delete-deployment.yml +++ b/.github/workflows/delete-deployment.yml @@ -1,5 +1,7 @@ name: Delete Cloud Run instances on PR closed by merged +permissions: read-all + on: pull_request: branches: From 61367ae89e500c7ffcd6d0745681c2580443f8ac Mon Sep 17 00:00:00 2001 From: Kevin Jimenez Date: Sun, 12 May 2024 19:05:20 -0400 Subject: [PATCH 7/8] Update sub-build-push-image.yml --- .github/workflows/sub-build-push-image.yml | 2 ++ 1 file changed, 2 insertions(+) diff --git a/.github/workflows/sub-build-push-image.yml b/.github/workflows/sub-build-push-image.yml index 2c1dc589..db48ca82 100644 --- a/.github/workflows/sub-build-push-image.yml +++ b/.github/workflows/sub-build-push-image.yml @@ -1,5 +1,7 @@ name: Build docker image +permissions: read-all + on: workflow_call: inputs: From c1aedffbe98ca46e26713bcaff92a4f994461f66 Mon Sep 17 00:00:00 2001 From: Kevin Jimenez Date: Sun, 12 May 2024 19:05:32 -0400 Subject: [PATCH 8/8] Update sub-cloudrun-deploy.yml --- .github/workflows/sub-cloudrun-deploy.yml | 2 ++ 1 file changed, 2 insertions(+) diff --git a/.github/workflows/sub-cloudrun-deploy.yml b/.github/workflows/sub-cloudrun-deploy.yml index c7f5eaf9..5ca7c9b2 100644 --- a/.github/workflows/sub-cloudrun-deploy.yml +++ b/.github/workflows/sub-cloudrun-deploy.yml @@ -1,5 +1,7 @@ name: Deploy to Cloud Run +permissions: read-all + on: workflow_call: inputs: