Skip to content

Comments

ci: declare explicit read-only GITHUB_TOKEN permissions#5931

Closed
Rohan5commit wants to merge 1 commit intopallets:mainfrom
Rohan5commit:ci/explicit-workflow-token-permissions
Closed

ci: declare explicit read-only GITHUB_TOKEN permissions#5931
Rohan5commit wants to merge 1 commit intopallets:mainfrom
Rohan5commit:ci/explicit-workflow-token-permissions

Conversation

@Rohan5commit
Copy link

Summary\n- add explicit permissions: contents: read to workflows that currently rely on implicit defaults\n\n## Changed workflows\n- .github/workflows/pre-commit.yaml\n- .github/workflows/tests.yaml\n\n## Why\nThese jobs only need repository read access for checkout. Declaring explicit permissions follows GitHub least-privilege guidance and makes intent clear/auditable.\n\n## Notes\n- configuration-only change; no test or lint logic modified\n

@ThiefMaster
Copy link
Member

Your AI slop machine did not even manage to format the description of your PR correctly... Do not send us AI-generated PRs.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

None yet

Projects

None yet

Development

Successfully merging this pull request may close these issues.

3 participants