mirror of
https://github.com/fluxcd/flux2.git
synced 2026-04-06 20:19:24 +00:00
5f3098477e
Add explicit top-level `permissions: contents: read` to the upgrade-fluxcd-pkg workflow to follow the principle of least privilege and fix the OpenSSF Scorecard Token-Permissions warning. Signed-off-by: Gagan H R <hrgagan4@gmail.com>
13 lines
256 B
YAML
13 lines
256 B
YAML
name: upgrade-fluxcd-pkg
|
|
|
|
on:
|
|
workflow_dispatch:
|
|
|
|
permissions:
|
|
contents: read
|
|
|
|
jobs:
|
|
upgrade-fluxcd-pkg:
|
|
uses: fluxcd/gha-workflows/.github/workflows/upgrade-fluxcd-pkg.yaml@v0.9.0
|
|
secrets:
|
|
github-token: ${{ secrets.BOT_GITHUB_TOKEN }}
|