mirror of
https://github.com/containrrr/watchtower.git
synced 2025-12-16 23:20:12 +01:00
Merge pull request #58 from nicholas-fedor/57-fix-code-scanning-alert---workflow-does-not-contain-permissions
Add permissions
This commit is contained in:
Nick Fedor
GitHub
commit
093429b95d
2 changed files with 10 additions and 0 deletions
4
.github/workflows/clean-cache.yml
vendored
4
.github/workflows/clean-cache.yml
vendored
|
|
@ -5,6 +5,10 @@ on:
|
||||||
types:
|
types:
|
||||||
- closed
|
- closed
|
||||||
|
|
||||||
|
permissions:
|
||||||
|
actions: write
|
||||||
|
contents: read
|
||||||
|
|
||||||
jobs:
|
jobs:
|
||||||
cleanup:
|
cleanup:
|
||||||
runs-on: ubuntu-latest
|
runs-on: ubuntu-latest
|
||||||
|
|
|
||||||
6
.github/workflows/release.yml
vendored
6
.github/workflows/release.yml
vendored
|
|
@ -7,6 +7,12 @@ on:
|
||||||
- "v[0-9]+.[0-9]+.[0-9]+"
|
- "v[0-9]+.[0-9]+.[0-9]+"
|
||||||
- "**/v[0-9]+.[0-9]+.[0-9]+"
|
- "**/v[0-9]+.[0-9]+.[0-9]+"
|
||||||
|
|
||||||
|
permissions:
|
||||||
|
contents: read # Needed for all jobs to checkout the repository
|
||||||
|
packages: write # For the build job to push to GHCR
|
||||||
|
attestations: write # For managing attestations in the build job
|
||||||
|
id-token: write # For OIDC token usage in the build and potentially in the renew-docs job
|
||||||
|
|
||||||
jobs:
|
jobs:
|
||||||
lint:
|
lint:
|
||||||
name: Lint
|
name: Lint
|
||||||
|
|
|
||||||
Loading…
Add table
Add a link
Reference in a new issue