Update 8hobbies/workflows digest to a59ef2f #213
Conversation
![github-advanced-security[bot]](https://avatars.githubusercontent.com/in/57789?s=60&v=4){kind=small}
| jobs: | ||
| lint: | ||
| uses: 8hobbies/workflows/.github/workflows/npm-lint.yml@71e7c31d67cdf9e3f03cb62c72951f48215e4c82 | ||
| uses: 8hobbies/workflows/.github/workflows/npm-lint.yml@a59ef2fc12c42dbd69f1afd8502e163a9f5aabe2 |
Check warning
Code scanning / CodeQL
Workflow does not contain permissions Medium
Show autofix suggestion
Hide autofix suggestion
Copilot Autofix
AI 7 months ago
To fix the issue, add a permissions block at the root of the workflow file. Since this is a linting workflow, it likely only needs read access to the repository contents. The permissions block should be set to contents: read to minimize the permissions granted to the GITHUB_TOKEN.
| @@ -16,2 +16,5 @@ | ||
|
|
||
| permissions: | ||
| contents: read | ||
|
|
||
| on: |
| jobs: | ||
| run: | ||
| uses: 8hobbies/workflows/.github/workflows/npm-publish-dry-run.yml@71e7c31d67cdf9e3f03cb62c72951f48215e4c82 | ||
| uses: 8hobbies/workflows/.github/workflows/npm-publish-dry-run.yml@a59ef2fc12c42dbd69f1afd8502e163a9f5aabe2 |
Check warning
Code scanning / CodeQL
Workflow does not contain permissions Medium
Show autofix suggestion
Hide autofix suggestion
Copilot Autofix
AI 7 months ago
To fix the issue, we need to add a permissions block to the workflow. This block should specify the least privileges required for the workflow to function correctly. Since the workflow uses a reusable workflow (npm-publish-dry-run.yml), we should consult its documentation or analyze its functionality to determine the required permissions. If no specific permissions are documented, we can start with a minimal set, such as contents: read.
The permissions block should be added at the root level of the workflow file to apply to all jobs, including the reusable workflow.
| @@ -16,2 +16,5 @@ | ||
|
|
||
| permissions: | ||
| contents: read | ||
|
|
||
| on: |
| jobs: | ||
| test: | ||
| uses: 8hobbies/workflows/.github/workflows/npm-runtime.yml@71e7c31d67cdf9e3f03cb62c72951f48215e4c82 | ||
| uses: 8hobbies/workflows/.github/workflows/npm-runtime.yml@a59ef2fc12c42dbd69f1afd8502e163a9f5aabe2 |
Check warning
Code scanning / CodeQL
Workflow does not contain permissions Medium
Show autofix suggestion
Hide autofix suggestion
Copilot Autofix
AI 7 months ago
To fix the issue, add a permissions block at the root level of the workflow. This block will define the minimal permissions required for the workflow. Since the specific permissions required by the reusable workflow are not detailed, we will start with the most restrictive permissions (contents: read) and adjust as needed based on the workflow's functionality.
The permissions block should be added after the name field and before the on field in the workflow file.
| @@ -15,2 +15,4 @@ | ||
| name: Runtime | ||
| permissions: | ||
| contents: read | ||
|
|
This PR contains the following updates:
71e7c31->a59ef2fConfiguration
📅 Schedule: Branch creation - "on Sunday" (UTC), Automerge - At any time (no schedule defined).
🚦 Automerge: Enabled.
♻ Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.
🔕 Ignore: Close this PR and you won't be reminded about this update again.
This PR was generated by Mend Renovate. View the repository job log.