mirror/pnpm - pnpm - Gitea: Git with a cup of tea

mirror/pnpm

Fork 0

mirror of https://github.com/pnpm/pnpm.git synced 2026-01-26 07:48:42 -05:00

Commit Graph

Author	SHA1	Message	Date
neilnaveen	6bbb7b1d26	chore: Set permissions for GitHub actions (#4607 ) Restrict the GitHub token permissions only to the required ones; this way, even if the attackers will succeed in compromising your workflow, they won’t be able to do much. - Included permissions for the action. https://github.com/ossf/scorecard/blob/main/docs/checks.md#token-permissions https://docs.github.com/en/actions/using-workflows/workflow-syntax-for-github-actions#permissions https://docs.github.com/en/actions/using-jobs/assigning-permissions-to-jobs [Keeping your GitHub Actions and workflows secure Part 1: Preventing pwn requests](https://securitylab.github.com/research/github-actions-preventing-pwn-requests/) Signed-off-by: neilnaveen <42328488+neilnaveen@users.noreply.github.com>	2022-04-22 03:04:45 +03:00
Zoltan Kochan	bc9dbc5ba7	ci: add coeql analysis	2021-03-13 01:17:18 +02:00

Author

SHA1

Message

Date

neilnaveen

6bbb7b1d26

chore: Set permissions for GitHub actions (#4607 )

Restrict the GitHub token permissions only to the required ones; this way, even if the attackers will succeed in compromising your workflow, they won’t be able to do much.

- Included permissions for the action. https://github.com/ossf/scorecard/blob/main/docs/checks.md#token-permissions

https://docs.github.com/en/actions/using-workflows/workflow-syntax-for-github-actions#permissions

https://docs.github.com/en/actions/using-jobs/assigning-permissions-to-jobs

[Keeping your GitHub Actions and workflows secure Part 1: Preventing pwn requests](https://securitylab.github.com/research/github-actions-preventing-pwn-requests/)

Signed-off-by: neilnaveen <42328488+neilnaveen@users.noreply.github.com>

2022-04-22 03:04:45 +03:00

Zoltan Kochan

bc9dbc5ba7

ci: add coeql analysis

2021-03-13 01:17:18 +02:00

2 Commits