Skip to content

ci: add missing permission to Trivy scan job#4298

Merged
casibbald merged 1 commit intoweaveworks:mainfrom
erikgb:fix-trivy-scan
Dec 29, 2024
Merged

ci: add missing permission to Trivy scan job#4298
casibbald merged 1 commit intoweaveworks:mainfrom
erikgb:fix-trivy-scan

Conversation

@erikgb
Copy link
Copy Markdown
Contributor

@erikgb erikgb commented Dec 29, 2024

Hopefully, this should fix the current error on the main branch:

RequestError [HttpError]: Resource not accessible by integration
    at /home/runner/work/_actions/github/codeql-action/04daf0[14](https://github.com/weaveworks/weave-gitops/actions/runs/12536344145/job/34959246645#step:4:15)b50eaf774287bf3f0f1869d4b4c4b913/node_modules/@octokit/request/dist-node/index.js:86:21
    at process.processTicksAndRejections (node:internal/process/task_queues:95:5)
    at async requestWithGraphqlErrorHandling (/home/runner/work/_actions/github/codeql-action/04daf014b50eaf774287bf3f0f1869d4b4c4b913/node_modules/@octokit/plugin-retry/dist-node/index.js:71:20)
    at async Job.doExecute (/home/runner/work/_actions/github/codeql-action/04daf014b50eaf774287bf3f0f1869d4b4c4b913/node_modules/bottleneck/light.js:405:18) {
  status: 403,
  response: {
    url: 'https://api.github.com/repos/weaveworks/weave-gitops/code-scanning/analysis/status',
    status: 403,

The permission granted in this PR is the same as the one given to the CodeQL scanning job. I have a feeling the two jobs require the same permissions.

@casibbald casibbald merged commit 26e3e65 into weaveworks:main Dec 29, 2024
casibbald pushed a commit that referenced this pull request Dec 29, 2024
@erikgb @casibbald
ci: add missing permission to Trivy scan job (#4298)
5976a82
casibbald added a commit that referenced this pull request Dec 29, 2024
@casibbald @erikgb
chore: address pinned dependencies error (#4299)
463b871 
* chore: address pinned dependencies error

* ci: add missing permission to Trivy scan job (#4298)

* chore: bump Flux module dependencies (#4297)

---------

Co-authored-by: Erik Godding Boye <egboye@gmail.com>
@weave-gitops-bot weave-gitops-bot mentioned this pull request Jan 2, 2025
Closed
@weave-gitops-bot weave-gitops-bot mentioned this pull request Jan 15, 2025
Closed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@erikgb @casibbald