neilnaveen
f4569f0b48
Set permissions for GitHub actions ( #5090 )
...
- Included permissions for the action. https://github.com/ossf/scorecard/blob/main/docs/checks.md#token-permissions
https://docs.github.com/en/actions/using-workflows/workflow-syntax-for-github-actions#permissions
https://docs.github.com/en/actions/using-jobs/assigning-permissions-to-jobs
[Keeping your GitHub Actions and workflows secure Part 1: Preventing pwn requests](https://securitylab.github.com/research/github-actions-preventing-pwn-requests/ )
Restrict the GitHub token permissions only to the required ones; this way, even if the attackers will succeed in compromising your workflow, they won’t be able to do much.
Signed-off-by: neilnaveen <42328488+neilnaveen@users.noreply.github.com>
Co-authored-by: Joe Previte <jjprevite@gmail.com>
2022-04-12 18:59:11 +00:00
renovate[bot]
3f3a489f33
chore(deps): update actions/checkout action to v3 ( #4931 )
...
Co-authored-by: Renovate Bot <bot@renovateapp.com>
Co-authored-by: Jonathan Yu <jonathan@coder.com>
2022-03-01 16:31:32 -07:00
Jonathan Yu
83269ba658
chore: limit concurrency for build jobs ( #4929 )
...
* Configure build jobs to cancel previous builds when new changes
are pushed to a pull request branch, and serialize builds when
running in a branch from a push event
* Reduce privileges of GitHub token for scripts workflow
2022-03-01 15:03:39 -08:00
Asher
49c9c191b9
Fix script test workflow triggers ( #4412 )
2021-10-29 14:48:21 -05:00
Asher
3339853c26
Avoid root when prefix is writable
...
Previously if the prefix was non-existent we would switch to root even
if the user does have the permissions to create the directory.
Fixes #3585
2021-07-13 12:22:06 -05:00
Asher
c31e72fb7b
Add installer integration tests
2021-07-13 12:21:34 -05:00
