Home Explore Help
Register Sign In
vuejs
/
core
mirror of https://github.com/vuejs/core.git
2
0
Fork 0
Files Issues 0 Wiki
Browse Source

chore(ci): set explicit least-privilege workflow permissions (#14809)

Arpit Jain 1 month ago
parent
f46e49cbbc
commit
2042a040f1
2 changed files with 8 additions and 0 deletions
Split View Show Diff Stats
  1. 3 0
      .github/workflows/ci.yml
  2. 5 0
      .github/workflows/ecosystem-ci-trigger.yml

+ 3 - 0
.github/workflows/ci.yml
View File 

@@ -10,6 +10,9 @@ on:
 
       - main
 
       - minor
 
 
+permissions:
 
+  contents: read
 
+
 
 jobs:
 
   test:
 
     if: ${{ ! startsWith(github.event.head_commit.message, 'release:') && (github.event_name == 'push' || github.event.pull_request.head.repo.full_name != github.repository) }}

+ 5 - 0
.github/workflows/ecosystem-ci-trigger.yml
View File 

@@ -4,6 +4,11 @@ on:
 
   issue_comment:
 
     types: [created]
 
 
+permissions:
 
+  contents: read
 
+  issues: write
 
+  pull-requests: read
 
+
 
 jobs:
 
   trigger:
 
     runs-on: ubuntu-latest