nathannaveen
|
4471e9f322
|
Set permissions for GitHub actions (#2752)
- Included permissions for the action. https://github.com/ossf/scorecard/blob/main/docs/checks.md#token-permissions
https://docs.github.com/en/actions/using-workflows/workflow-syntax-for-github-actions#permissions
https://docs.github.com/en/actions/using-jobs/assigning-permissions-to-jobs
[Keeping your GitHub Actions and workflows secure Part 1: Preventing pwn requests](https://securitylab.github.com/research/github-actions-preventing-pwn-requests/)
Restrict the GitHub token permissions only to the required ones; this way, even if the attackers will succeed in compromising your workflow, they won’t be able to do much.
Signed-off-by: nathannaveen <42319948+nathannaveen@users.noreply.github.com>
|
2022-04-11 14:52:49 -05:00 |
|
dependabot[bot]
|
2feab4440c
|
Bump githubocto/repo-visualizer from 0.7.1 to 0.8.1 (#2727)
Bumps [githubocto/repo-visualizer](https://github.com/githubocto/repo-visualizer) from 0.7.1 to 0.8.1.
- [Release notes](https://github.com/githubocto/repo-visualizer/releases)
- [Commits](https://github.com/githubocto/repo-visualizer/compare/0.7.1...0.8.1)
---
updated-dependencies:
- dependency-name: githubocto/repo-visualizer
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
|
2022-04-04 09:02:51 -05:00 |
|
Lukas Gravley
|
33dfb2b624
|
weekly (#2679)
|
2022-03-25 08:56:31 -05:00 |
|
Lukas Gravley
|
aee503c133
|
trying to create diagram (#2674)
* trying to create diagram
* typo
* typo
* typo
* typo
* typo
* typo
* dope code
|
2022-03-24 13:46:42 -05:00 |
|