Skip to content

Commit a4a0280

Browse files
zahidferzzahidferz
authored
Merge pull request #44 from cloudgraphdev/fix/gh-brew-notify-jobs-1
Updating the homebrew and publish job permissions
2 parents e40a370 + 40b96f8 commit a4a0280

File tree

4 files changed

+15
-9
lines changed

4 files changed

+15
-9
lines changed

.github/workflows/homebrew.yaml

Lines changed: 8 additions & 6 deletions
Original file line numberDiff line numberDiff line change
@@ -9,18 +9,22 @@ jobs:
99
homebrew:
1010
runs-on: ubuntu-latest
1111
steps:
12-
- uses: actions/checkout@v2
12+
- uses: actions/checkout@v3
13+
with:
14+
fetch-depth: 0
15+
persist-credentials: false
16+
token: ${{secrets.gh_token}}
1317
- uses: actions/setup-node@v2
1418
with:
1519
node-version: 16
1620
registry-url: 'https://registry.npmjs.org'
1721

1822
- name: Mkdir .aws
19-
run: mkdir -p /home/node/.aws
23+
run: mkdir -p ~/.aws
2024

2125
- name: Set .aws/config
2226
run: |
23-
cat << EOF > /home/node/.aws/config
27+
cat << EOF > ~/.aws/config
2428
[default]
2529
region=us-east-1
2630
output=json
@@ -31,7 +35,7 @@ jobs:
3135
EOF
3236
- name: Set .aws/credentials
3337
run: |
34-
cat << EOF > /home/node/.aws/credentials
38+
cat << EOF > ~/.aws/credentials
3539
[default]
3640
aws_access_key_id = $AWS_ACCESS_KEY_ID
3741
aws_secret_access_key = $AWS_SECRET_ACCESS_KEY
@@ -61,8 +65,6 @@ jobs:
6165
run: yarn homebrew
6266
env:
6367
NODE_AUTH_TOKEN: ${{secrets.npm_token}}
64-
AWS_SHARED_CREDENTIALS_FILE: /home/node/.aws/credentials
65-
AWS_CONFIG_FILE: /home/node/.aws/config
6668
AWS_SDK_LOAD_CONFIG: true
6769
AWS_PROFILE: cloudgraph-iac
6870
AWS_ACCESS_KEY_ID: ${{secrets.aws_access_key_id}}

.github/workflows/notify.yml

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -8,7 +8,7 @@ jobs:
88
notify:
99
runs-on: ubuntu-latest
1010
steps:
11-
- uses: actions/checkout@v2
11+
- uses: actions/checkout@v3
1212
- uses: actions/setup-node@v2
1313
with:
1414
node-version: 16

.github/workflows/pr-validator.yml

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -11,7 +11,7 @@ jobs:
1111
pr-validation:
1212
runs-on: ubuntu-latest
1313
steps:
14-
- uses: actions/checkout@v2
14+
- uses: actions/checkout@v3
1515
- run : |
1616
if [ "$TARGET_BRANCH" == "master" ] && [ "$SOURCE_BRANCH" == "beta" ]; then
1717
echo "Merge from $SOURCE_BRANCH to $TARGET_BRANCH is valid"

.github/workflows/publish.yml

Lines changed: 5 additions & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -15,7 +15,11 @@ jobs:
1515
build:
1616
runs-on: ubuntu-latest
1717
steps:
18-
- uses: actions/checkout@v2
18+
- uses: actions/checkout@v3
19+
with:
20+
fetch-depth: 0
21+
persist-credentials: false
22+
token: ${{secrets.gh_token}}
1923
- uses: actions/setup-node@v2
2024
with:
2125
node-version: 16

0 commit comments

Comments
 (0)