mirrors/NewPipe
1
0
Fork 0
mirror of https://github.com/TeamNewPipe/NewPipe synced 2025-10-31 15:23:00 +00:00
Code Issues Releases Wiki Activity

Merge pull request #8569 from mhmdanas/add-workflow-permissions

Browse Source 
Use minimum required permissions for GitHub workflows
This commit is contained in:
Stypox
2022-07-13 18:56:10 +02:00
committed by GitHub
parent d5599ebfa3 a1f1acfbf9
commit 0b644fd794
3 changed files with 21 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

12
.github/workflows/ci.yml vendored
View File

@@ -31,6 +31,10 @@ on:
jobs: jobs:
build-and-test-jvm: build-and-test-jvm:
runs-on: ubuntu-latest runs-on: ubuntu-latest
permissions:
contents: read
steps: steps:
- uses: actions/checkout@v3 - uses: actions/checkout@v3
- uses: gradle/wrapper-validation-action@v1 - uses: gradle/wrapper-validation-action@v1
@@ -64,6 +68,10 @@ jobs:
matrix: matrix:
# api-level 19 is min sdk, but throws errors related to desugaring # api-level 19 is min sdk, but throws errors related to desugaring
api-level: [ 21, 29 ] api-level: [ 21, 29 ]
permissions:
contents: read
steps: steps:
- uses: actions/checkout@v3 - uses: actions/checkout@v3
@@ -91,6 +99,10 @@ jobs:
sonar: sonar:
runs-on: ubuntu-latest runs-on: ubuntu-latest
permissions:
contents: read
steps: steps:
- uses: actions/checkout@v3 - uses: actions/checkout@v3
with: with:

4
.github/workflows/image-minimizer.yml vendored
View File

@@ -6,6 +6,10 @@ on:
issues: issues:
types: [opened, edited] types: [opened, edited]
permissions:
issues: write
pull-requests: write
jobs: jobs:
try-minimize: try-minimize:
runs-on: ubuntu-latest runs-on: ubuntu-latest

4
.github/workflows/no-response.yml vendored
View File

@@ -9,6 +9,10 @@ on:
# Run daily at midnight. # Run daily at midnight.
- cron: '0 0 * * *' - cron: '0 0 * * *'
permissions:
issues: write
pull-requests: write
jobs: jobs:
noResponse: noResponse:
runs-on: ubuntu-latest runs-on: ubuntu-latest