From 4024dfcd2163c9d8466abcb9eb1dbd71c0fa5fe5 Mon Sep 17 00:00:00 2001 From: Guy Owen Date: Mon, 14 Jul 2025 11:12:48 +1000 Subject: [PATCH 1/4] [SDPPE-100] Bumped image version. --- .github/workflows/tide_build.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/tide_build.yml b/.github/workflows/tide_build.yml index b8f3c09d..99ff4640 100644 --- a/.github/workflows/tide_build.yml +++ b/.github/workflows/tide_build.yml @@ -63,7 +63,7 @@ jobs: name: tide_build runs-on: ${{ inputs.runner }} container: - image: ghcr.io/dpc-sdp/bay/ci-builder:5.x + image: ghcr.io/dpc-sdp/bay/ci-builder:6.x steps: - name: Checkout code uses: actions/checkout@v4 From 7b29e90b744e9dce0b914a50234efe4f97f0f077 Mon Sep 17 00:00:00 2001 From: Guy Owen Date: Mon, 14 Jul 2025 14:41:41 +1000 Subject: [PATCH 2/4] [SDPPE-100] Debug. Comment permissions property. --- .github/workflows/tide_build.yml | 8 ++++---- 1 file changed, 4 insertions(+), 4 deletions(-) diff --git a/.github/workflows/tide_build.yml b/.github/workflows/tide_build.yml index 99ff4640..a85802a7 100644 --- a/.github/workflows/tide_build.yml +++ b/.github/workflows/tide_build.yml @@ -23,10 +23,10 @@ env: REGISTRY: ghcr.io # Add permissions block with required permissions used for shipshape audit -permissions: - checks: write - contents: read - pull-requests: write +# permissions: +# checks: write +# contents: read +# pull-requests: write jobs: check-nginx-config: From 3a7e317501fa9919ecba05c00d77b6895f11f8fd Mon Sep 17 00:00:00 2001 From: Guy Owen Date: Mon, 14 Jul 2025 16:04:19 +1000 Subject: [PATCH 3/4] [SDPPE-100] Updated permissions. --- .github/workflows/tide_build.yml | 11 ++++++----- 1 file changed, 6 insertions(+), 5 deletions(-) diff --git a/.github/workflows/tide_build.yml b/.github/workflows/tide_build.yml index a85802a7..7e2fe4df 100644 --- a/.github/workflows/tide_build.yml +++ b/.github/workflows/tide_build.yml @@ -22,11 +22,12 @@ on: env: REGISTRY: ghcr.io -# Add permissions block with required permissions used for shipshape audit -# permissions: -# checks: write -# contents: read -# pull-requests: write +Add permissions block with required permissions used for shipshape audit +permissions: + checks: write + contents: read + pull-requests: write + packages: read jobs: check-nginx-config: From 9915df11faa7dba18b40db6080278ab6f7625301 Mon Sep 17 00:00:00 2001 From: Guy Owen Date: Mon, 14 Jul 2025 16:06:53 +1000 Subject: [PATCH 4/4] [SDPPE-100] Fixed syntax --- .github/workflows/tide_build.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/tide_build.yml b/.github/workflows/tide_build.yml index 7e2fe4df..99a5581c 100644 --- a/.github/workflows/tide_build.yml +++ b/.github/workflows/tide_build.yml @@ -22,7 +22,7 @@ on: env: REGISTRY: ghcr.io -Add permissions block with required permissions used for shipshape audit +# Add permissions block with required permissions used for shipshape audit permissions: checks: write contents: read