mirror of
https://github.com/XTLS/Xray-core.git
synced 2024-11-05 06:33:02 +00:00
Add specific permissions to workflows under .github/workflows (#704)
* Restrict permissions for the GITHUB_TOKEN in .github/workflows/release.yml * Restrict permissions for the GITHUB_TOKEN in .github/workflows/test.yml Co-authored-by: Step Security <bot@stepsecurity.io>
This commit is contained in:
parent
496b2c02c5
commit
22e46b846c
2
.github/workflows/release.yml
vendored
2
.github/workflows/release.yml
vendored
@ -21,6 +21,8 @@ on:
|
||||
- ".github/workflows/*.yml"
|
||||
jobs:
|
||||
build:
|
||||
permissions:
|
||||
contents: write
|
||||
strategy:
|
||||
matrix:
|
||||
# Include amd64 on all platforms.
|
||||
|
2
.github/workflows/test.yml
vendored
2
.github/workflows/test.yml
vendored
@ -19,6 +19,8 @@ on:
|
||||
|
||||
jobs:
|
||||
test:
|
||||
permissions:
|
||||
contents: read
|
||||
runs-on: ${{ matrix.os }}
|
||||
strategy:
|
||||
fail-fast: false
|
||||
|
Loading…
Reference in New Issue
Block a user