[Python-checkins] GitHub Workflows security hardening (#96492)
ezio-melotti
webhook-mailer at python.org
Sat Oct 8 04:13:43 EDT 2022
https://github.com/python/cpython/commit/c66dbddfbaa374a6954897809574ee9fb463e393
commit: c66dbddfbaa374a6954897809574ee9fb463e393
branch: main
author: Alex <aleksandrosansan at gmail.com>
committer: ezio-melotti <ezio.melotti at gmail.com>
date: 2022-10-08T10:13:34+02:00
summary:
GitHub Workflows security hardening (#96492)
* Update project-updater.yml
Signed-off-by: sashashura <93376818+sashashura at users.noreply.github.com>
* Update project-updater.yml
repository-projects: write is not needed because a separate secrets.ADD_TO_PROJECT_PAT is used
Signed-off-by: sashashura <93376818+sashashura at users.noreply.github.com>
files:
M .github/workflows/project-updater.yml
diff --git a/.github/workflows/project-updater.yml b/.github/workflows/project-updater.yml
index 77e55ed019b2..99c7a05ae8ca 100644
--- a/.github/workflows/project-updater.yml
+++ b/.github/workflows/project-updater.yml
@@ -6,6 +6,9 @@ on:
- opened
- labeled
+permissions:
+ contents: read
+
jobs:
add-to-project:
name: Add issues to projects
More information about the Python-checkins
mailing list