Use minimum required permissions for GitHub workflows
This reduces the attack surface if the workflows are ever compromised.
This commit is contained in:
mhmdanas
parent
5219a705ba
commit
414186cff5
2 changed files with 7 additions and 0 deletions
3
.github/workflows/ci.yml
vendored
3
.github/workflows/ci.yml
vendored
|
|
@ -10,6 +10,9 @@ on:
|
|||
- master
|
||||
pull_request:
|
||||
|
||||
permissions:
|
||||
contents: read
|
||||
|
||||
jobs:
|
||||
build-and-test:
|
||||
runs-on: ubuntu-latest
|
||||
|
|
|
|||
4
.github/workflows/docs.yml
vendored
4
.github/workflows/docs.yml
vendored
|
|
@ -5,6 +5,10 @@ on:
|
|||
branches:
|
||||
- master
|
||||
|
||||
permissions:
|
||||
# The generated docs are written to the `gh-pages` branch.
|
||||
contents: write
|
||||
|
||||
jobs:
|
||||
build-and-deploy-docs:
|
||||
runs-on: ubuntu-latest
|
||||
|
|
|
|||
Loading…
Reference in a new issue