Update 8hobbies/workflows digest to b569198 #202
Conversation
![renovate[bot]](https://avatars.githubusercontent.com/in/2740?s=60&v=4){kind=small}
![github-advanced-security[bot]](https://avatars.githubusercontent.com/in/57789?s=60&v=4){kind=small}
| @@ -22,4 +22,4 @@ | |||
|
|
|||
| jobs: | |||
| lint: | |||
| uses: 8hobbies/workflows/.github/workflows/npm-lint.yml@f5c8ef425eb98fbd138800d88fddbbb867b60873 | |||
| uses: 8hobbies/workflows/.github/workflows/npm-lint.yml@b569198ec9f37a053f8ca8ca4f73cd0659fe2a43 | |||
Check warning
Code scanning / CodeQL
Workflow does not contain permissions Medium
Show autofix suggestion
Hide autofix suggestion
Copilot Autofix
AI 15 days ago
To fix the issue, we will add a permissions block at the root level of the workflow. Since this is a linting workflow, it likely only requires read access to the repository contents. We will set contents: read as the minimal permission. This ensures that the GITHUB_TOKEN has the least privileges necessary to execute the workflow.
| @@ -16,2 +16,5 @@ | ||
|
|
||
| permissions: | ||
| contents: read | ||
|
|
||
| on: |
| @@ -22,4 +22,4 @@ | |||
|
|
|||
| jobs: | |||
| run: | |||
| uses: 8hobbies/workflows/.github/workflows/npm-publish-dry-run.yml@f5c8ef425eb98fbd138800d88fddbbb867b60873 | |||
| uses: 8hobbies/workflows/.github/workflows/npm-publish-dry-run.yml@b569198ec9f37a053f8ca8ca4f73cd0659fe2a43 | |||
Check warning
Code scanning / CodeQL
Workflow does not contain permissions Medium
Show autofix suggestion
Hide autofix suggestion
Copilot Autofix
AI 15 days ago
To fix the issue, we will add a permissions block at the root level of the workflow. This block will define the minimal permissions required for the workflow to function. Since the workflow is performing a "publish dry run," it likely only needs contents: read permissions to access repository contents. If additional permissions are required, they can be added based on the specific needs of the reusable workflow.
| @@ -16,2 +16,5 @@ | ||
|
|
||
| permissions: | ||
| contents: read | ||
|
|
||
| on: |
| @@ -22,4 +22,4 @@ | |||
|
|
|||
| jobs: | |||
| test: | |||
| uses: 8hobbies/workflows/.github/workflows/npm-runtime.yml@f5c8ef425eb98fbd138800d88fddbbb867b60873 | |||
| uses: 8hobbies/workflows/.github/workflows/npm-runtime.yml@b569198ec9f37a053f8ca8ca4f73cd0659fe2a43 | |||
Check warning
Code scanning / CodeQL
Workflow does not contain permissions Medium
Show autofix suggestion
Hide autofix suggestion
Copilot Autofix
AI 15 days ago
To fix the issue, add a permissions block at the root of the workflow file. This block will explicitly define the permissions granted to the GITHUB_TOKEN for all jobs in the workflow. Based on the principle of least privilege, start with contents: read, which is sufficient for most basic CI workflows. If additional permissions are required by the reusable workflow, they can be added explicitly.
| @@ -16,2 +16,5 @@ | ||
|
|
||
| permissions: | ||
| contents: read | ||
|
|
||
| on: |
This PR contains the following updates:
f5c8ef4->b569198Configuration
📅 Schedule: Branch creation - "on Sunday" (UTC), Automerge - At any time (no schedule defined).
🚦 Automerge: Enabled.
♻ Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.
🔕 Ignore: Close this PR and you won't be reminded about this update again.
This PR was generated by Mend Renovate. View the repository job log.