raggedstaff/openfoodnetwork
1
0
Fork 0
mirror of https://github.com/openfoodfoundation/openfoodnetwork synced 2026-01-24 20:36:49 +00:00
Code Issues Packages Projects Releases Wiki Activity

Merge pull request #9314 from turrisxyz/Pinned-Dependencies-GitHub

Browse Source 
chore: Set permissions for GitHub actions
This commit is contained in:
Maikel
2022-06-22 12:07:07 +10:00
committed by GitHub
parent 5ecf678257 5c1bdc7698
commit fbf4513e96
2 changed files with 9 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

6
.github/workflows/brakeman-analysis.yml vendored
View File

@@ -10,8 +10,14 @@ on:
pull_request:
branches: [ "master" ]
permissions:
contents: read
jobs:
brakeman-scan:
permissions:
contents: read # for actions/checkout to fetch code
security-events: write # for github/codeql-action/upload-sarif to upload SARIF results
name: Brakeman Scan
runs-on: ubuntu-latest
steps:

3
.github/workflows/build.yml vendored
View File

@@ -12,6 +12,9 @@ env:
RSPEC_RETRY_RETRY_COUNT: 3
RAILS_ENV: test
permissions:
contents: read
jobs:
rspec:
runs-on: ubuntu-18.04