Skip to content

ci: Restrict permissions for GITHUB_TOKEN#4058

Merged
yiannistri merged 2 commits intomainfrom
fix-token-permissions
Oct 3, 2023
Merged

ci: Restrict permissions for GITHUB_TOKEN#4058
yiannistri merged 2 commits intomainfrom
fix-token-permissions

Conversation

@yiannistri
Copy link
Copy Markdown
Contributor

@yiannistri yiannistri commented Oct 2, 2023

What changed?
Set workflow level permissions to read-only and required job level permissions to write.

Why was this change made?
To restrict permissions for GITHUB_TOKEN.

How was this change implemented?
N/A

How did you validate the change?
N/A

Release notes
N/A

Documentation Changes
N/A

@yiannistri yiannistri force-pushed the fix-token-permissions branch 3 times, most recently from eb8dc29 to 3a809c9 Compare October 3, 2023 07:51
@yiannistri yiannistri force-pushed the fix-token-permissions branch from 2b1a4f5 to 45aad85 Compare October 3, 2023 08:02
@yiannistri yiannistri requested a review from yitsushi October 3, 2023 08:02
yitsushi
yitsushi approved these changes Oct 3, 2023
View reviewed changes
Copy link
Copy Markdown
Contributor

@yitsushi yitsushi left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I love the comments to explain why we need specific permission. ❤️

@yiannistri yiannistri merged commit 0286345 into main Oct 3, 2023
@yiannistri yiannistri deleted the fix-token-permissions branch October 3, 2023 09:47
@weave-gitops-bot weave-gitops-bot mentioned this pull request Oct 11, 2023
Merged
@weave-gitops-bot weave-gitops-bot mentioned this pull request Jan 2, 2025
Closed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@yitsushi yitsushi yitsushi approved these changes

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@yiannistri @yitsushi