Skip to content

Fix/workflow perms #177

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
jeffpaul merged 6 commits into from
May 13, 2025
Merged

Fix/workflow perms #177

jeffpaul merged 6 commits into from
May 13, 2025

Conversation

@jeffpaul
Copy link
Member

@jeffpaul jeffpaul commented May 12, 2025

Description of the Change

This PR adds permissions to workflows to ensure we're scoping as minimally as possible for each action. Each workflow here should be confirmed that the scopes needed are available in the updated permissions.

How to test the Change

Changelog Entry

Developer - Updated GitHub Action workflow permissions.

Credits

Props @jeffpaul.

Checklist:

jeffpaul and others added 6 commits May 12, 2025 11:33
@jeffpaul @github-advanced-security
fix workflow permissions
79e5d45 
Co-authored-by: Copilot Autofix powered by AI <62310815+github-advanced-security[bot]@users.noreply.github.com>
@jeffpaul @github-advanced-security
fix workflow permissions
740e550 
Co-authored-by: Copilot Autofix powered by AI <62310815+github-advanced-security[bot]@users.noreply.github.com>
@jeffpaul @github-advanced-security
fix workflow permissions
bbea9e7 
Co-authored-by: Copilot Autofix powered by AI <62310815+github-advanced-security[bot]@users.noreply.github.com>
@jeffpaul @github-advanced-security
fix workflow permissions
d0d882b 
Co-authored-by: Copilot Autofix powered by AI <62310815+github-advanced-security[bot]@users.noreply.github.com>
@jeffpaul @github-advanced-security
fix workflow permissions
16b06fb 
Co-authored-by: Copilot Autofix powered by AI <62310815+github-advanced-security[bot]@users.noreply.github.com>
@jeffpaul @github-advanced-security
fix workflow permissions
76375a5 
Co-authored-by: Copilot Autofix powered by AI <62310815+github-advanced-security[bot]@users.noreply.github.com>
@jeffpaul jeffpaul added this to the 1.2.0 milestone May 12, 2025
@jeffpaul jeffpaul requested a review from dkotter May 12, 2025 16:41
@jeffpaul jeffpaul self-assigned this May 12, 2025
@jeffpaul jeffpaul moved this to Code Review in Open Source Practice May 12, 2025
dkotter
dkotter approved these changes May 13, 2025
View reviewed changes
Copy link
Collaborator

@dkotter dkotter left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I think all these permissions look correct though we can modify them if we find any of these workflows start to fail

@github-project-automation github-project-automation bot moved this from Code Review to QA Testing in Open Source Practice May 13, 2025
@jeffpaul jeffpaul merged commit b8044e0 into develop May 13, 2025
12 checks passed
@jeffpaul jeffpaul deleted the fix/workflow-perms branch May 13, 2025 21:47
@github-project-automation github-project-automation bot moved this from QA Testing to Done in Open Source Practice May 13, 2025
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@dkotter dkotter dkotter approved these changes

Assignees

@jeffpaul jeffpaul

Labels

None yet

Projects

Open Source Practice
Archived in project

Milestone

1.2.0

Development

Successfully merging this pull request may close these issues.

2 participants

@jeffpaul @dkotter