Skip to content

fix(ci): Give correct permissions to PR size compare workflow#999

Merged
danielroe merged 1 commit intonuxt:mainfrom
AaronDewes:patch-2
Aug 8, 2025
Merged

fix(ci): Give correct permissions to PR size compare workflow#999
danielroe merged 1 commit intonuxt:mainfrom
AaronDewes:patch-2

Conversation

@AaronDewes
Copy link
Contributor

@AaronDewes AaronDewes commented Aug 8, 2025
edited
Loading

🔗 Linked issue

❓ Type of change

  • 📖 Documentation (updates to the documentation or readme)
  • 🐞 Bug fix (a non-breaking change that fixes an issue)
  • 👌 Enhancement (improving an existing functionality)
  • ✨ New feature (a non-breaking change that adds functionality)
  • 🧹 Chore (updates to the build process or auxiliary tools and libraries)
  • ⚠️ Breaking change (fix or feature that would cause existing functionality to change)

📚 Description

Only with pull_request_target does the action actually have the ability to make PR comments.

Please note: pull_request_target is dangerous in general. In this case, each job has restricted permissions defined, so it can be safely used here without a risk of anyone pushing unauthorized code. (pull-requests: write does not allow merging a PR).

You can't see the issue in this PR, because the new permissions will only apply after this PR is merged, but GitHub doesn't run the old action because it changed. You can see it in the checks tab of my other PR #998.

@AaronDewes
fix(ci): Give correct permissions to PR size compare workflow
2559b89 
Only with `pull_request_target` does the action actually have the ability to make PR comments.
@AaronDewes AaronDewes requested a review from danielroe as a code owner August 8, 2025 08:28
@pkg-pr-new
Copy link

pkg-pr-new bot commented Aug 8, 2025

nuxt-cli-playground

npm i https://pkg.pr.new/create-nuxt@999

npm i https://pkg.pr.new/nuxi@999

npm i https://pkg.pr.new/@nuxt/cli@999

commit: 2559b89

@codecov-commenter
Copy link

codecov-commenter commented Aug 8, 2025

Codecov Report

✅ All modified and coverable lines are covered by tests.
⚠️ Please upload report for BASE (main@e3c8445). Learn more about missing BASE report.

Additional details and impacted files 
@@           Coverage Diff           @@
##             main     #999   +/-   ##
=======================================
  Coverage        ?   27.30%           
=======================================
  Files           ?       74           
  Lines           ?     3897           
  Branches        ?      214           
=======================================
  Hits            ?     1064           
  Misses          ?     2804           
  Partials        ?       29

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

🚀 New features to boost your workflow:
  • ❄️ Test Analytics: Detect flaky tests, report on failures, and find test suite problems.
  • 📦 JS Bundle Analysis: Save yourself from yourself by tracking and limiting bundle sizes in JS merges.

@codspeed-hq
Copy link

codspeed-hq bot commented Aug 8, 2025

CodSpeed Performance Report

Merging #999 will not alter performance

Comparing AaronDewes:patch-2 (2559b89) with main (e3c8445)

Summary

✅ 2 untouched benchmarks

@danielroe danielroe merged commit 8cbbc93 into nuxt:main Aug 8, 2025
9 checks passed
@github-actions github-actions bot mentioned this pull request Aug 8, 2025
Closed
@danielroe danielroe mentioned this pull request Aug 8, 2025
Closed
6 tasks
@github-actions github-actions bot mentioned this pull request Aug 8, 2025
Merged
@Eazash Eazash mentioned this pull request Sep 17, 2025
Merged
6 tasks
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@danielroe danielroe Awaiting requested review from danielroe danielroe is a code owner

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@AaronDewes @codecov-commenter @danielroe