yamllint

mirror of https://github.com/adrienverge/yamllint.git synced 2024-11-22 07:36:25 -06:00

History

Dimitri Papadopoulos 4d271f3daf ci: Security hardening for GitHub Actions https://docs.github.com/en/actions/using-jobs/assigning-permissions-to-jobs The idea is that the software supply chain relies on 3rd party actions that could be compromised. Mitigate this risk by giving these actions minimal rights to the repository. Here read-only access is good enough.	2022-10-14 17:30:28 +02:00
..
workflows	ci: Security hardening for GitHub Actions	2022-10-14 17:30:28 +02:00

Dimitri Papadopoulos 4d271f3daf ci: Security hardening for GitHub Actions

https://docs.github.com/en/actions/using-jobs/assigning-permissions-to-jobs

The idea is that the software supply chain relies on 3rd party actions
that could be compromised. Mitigate this risk by giving these actions
minimal rights to the repository. Here read-only access is good enough.

2022-10-14 17:30:28 +02:00

workflows

ci: Security hardening for GitHub Actions

2022-10-14 17:30:28 +02:00