mirror of
https://github.com/fluxcd/flux2.git
synced 2026-04-08 21:20:05 +00:00
ci: add top-level permissions to upgrade-fluxcd-pkg workflow
Add explicit top-level `permissions: contents: read` to the upgrade-fluxcd-pkg workflow to follow the principle of least privilege and fix the OpenSSF Scorecard Token-Permissions warning. Signed-off-by: Gagan H R <hrgagan4@gmail.com>
This commit is contained in:
Gagan H R
parent
4c79a76e94
commit
5f3098477e
1 changed files with 3 additions and 0 deletions
3
.github/workflows/upgrade-fluxcd-pkg.yaml
vendored
3
.github/workflows/upgrade-fluxcd-pkg.yaml
vendored
|
|
@ -3,6 +3,9 @@ name: upgrade-fluxcd-pkg
|
|||
on:
|
||||
workflow_dispatch:
|
||||
|
||||
permissions:
|
||||
contents: read
|
||||
|
||||
jobs:
|
||||
upgrade-fluxcd-pkg:
|
||||
uses: fluxcd/gha-workflows/.github/workflows/upgrade-fluxcd-pkg.yaml@v0.9.0
|
||||
|
|
|
|||
Loading…
Add table
Add a link
Reference in a new issue