[WIP] Run tests with github actions #31
Conversation
![github-advanced-security[bot]](https://avatars.githubusercontent.com/in/57789?s=60&v=4){kind=small}
| - name: Checkout | ||
| uses: actions/checkout@v5 | ||
| - name: Setup PHP | ||
| uses: shivammathur/setup-php@v2 |
Check warning
Code scanning / CodeQL
Unpinned tag for a non-immutable Action in workflow Medium
| name: Unit tests | ||
| runs-on: ubuntu-latest | ||
| strategy: | ||
| matrix: | ||
| php-version: [8.2, 8.3, 8.4] | ||
| steps: | ||
| - name: Checkout | ||
| uses: actions/checkout@v5 | ||
| - name: Setup PHP | ||
| uses: shivammathur/setup-php@v2 | ||
| with: | ||
| php-version: ${{ matrix.php-version }} | ||
| - name: Composer install | ||
| run: composer install | ||
| - name: Run tests | ||
| run: composer run-script code:test |
Check warning
Code scanning / CodeQL
Workflow does not contain permissions Medium
Show autofix suggestion
Hide autofix suggestion
Copilot Autofix
AI 17 days ago
To address the problem, you should add a permissions block at the root level of the workflow file (.github/workflows/pull_request.yml). The block should grant only the minimal access required for the jobs within this workflow. Looking at the workflow, both job sections (linting, tests) only interact with the source code, they do not push commits, create comments, or open/close PRs, so the only permission strictly required is contents: read. The permissions block must be inserted after the name and before on, or at least before the jobs key, as per GitHub Actions YAML structure recommendations.
No additional methods, imports, or changes are necessary apart from adding this permissions block.
| @@ -1,4 +1,6 @@ | ||
| name: Pull Request | ||
| permissions: | ||
| contents: read | ||
| on: | ||
| pull_request: | ||
| branches: |
rkunjappan
changed the title
|
https://www.purencool.digital/development/using-php-webserver-to-run-drupal note it misses a line break after |
No description provided.