File tree Expand file tree Collapse file tree 7 files changed +27
-7
lines changed Expand file tree Collapse file tree 7 files changed +27
-7
lines changed Original file line number Diff line number Diff line change 7
7
# Automatically run on every Sunday
8
8
- cron : ' 0 0 * * 0'
9
9
10
+ permissions :
11
+ contents : read
12
+
10
13
jobs :
11
14
build :
12
15
runs-on : ubuntu-latest
Original file line number Diff line number Diff line change 30
30
# # Equivalent to github.event_name == 'pull_request' ? github.base_ref : github.ref_name
31
31
BASE_BRANCH : ${{ github.event_name == 'pull_request' && github.base_ref || github.ref_name }}
32
32
33
+ permissions :
34
+ contents : read
35
+
33
36
jobs :
34
37
35
38
pack :
Original file line number Diff line number Diff line change 10
10
- cron : 0 1 * * *
11
11
12
12
permissions :
13
- # Required to upload SARIF file to CodeQL.
14
- # See: https://github.com/github/codeql-action/issues/2117
15
- actions : read
16
- # Require writing security events to upload SARIF file to security tab
17
- security-events : write
18
- # Only need to read contents
19
13
contents : read
20
14
21
15
jobs :
72
66
# run-scheduled-scan triggers this job
73
67
# PRs and pushes trigger this job
74
68
if : github.event_name != 'schedule'
69
+ permissions :
70
+ # Required to upload SARIF file to CodeQL.
71
+ # See: https://github.com/github/codeql-action/issues/2117
72
+ actions : read
73
+ # Require writing security events to upload SARIF file to security tab
74
+ security-events : write
75
+ # Only needs to read contents
76
+ contents : read
75
77
uses :
" google/osv-scanner-action/.github/workflows/[email protected] "
Original file line number Diff line number Diff line change 12
12
# Limit concurrency so that we don't get any races between parallel actions
13
13
concurrency : pr-comment
14
14
15
+ permissions :
16
+ contents : read
17
+
15
18
jobs :
16
19
pr-number :
17
20
runs-on : ubuntu-20.04
Original file line number Diff line number Diff line change 7
7
# # In UTC
8
8
- cron : ' 0 */4 * * *'
9
9
10
+ permissions :
11
+ contents : read
12
+
10
13
jobs :
11
14
12
15
sync-prs :
Original file line number Diff line number Diff line change 9
9
10
10
# # Needed to create releases
11
11
permissions :
12
- contents : write
12
+ contents : read
13
13
14
14
# # Build base images to be used by other github workflows
15
15
jobs :
18
18
if : github.repository == 'erlang/otp'
19
19
concurrency : sync-github-releases
20
20
runs-on : ubuntu-latest
21
+ permissions :
22
+ # # Needed to create releases
23
+ contents : write
21
24
steps :
22
25
23
26
# # We need to login to the package registry in order to pull
Original file line number Diff line number Diff line change 7
7
# # In UTC
8
8
- cron : ' 0 0 * * *'
9
9
10
+ permissions :
11
+ contents : read
12
+
10
13
# # Build base images to be used by other github workflows
11
14
jobs :
12
15
You can’t perform that action at this time.
0 commit comments