This is an automated email from the ASF dual-hosted git repository.
rohit pushed a commit to branch main
in repository https://gitbox.apache.org/repos/asf/cloudstack.git
The following commit(s) were added to refs/heads/main by this push:
new de8aae16198 [StepSecurity] ci: Harden GitHub Actions in
merge-conflict-checker.yml (#6802)
de8aae16198 is described below
commit de8aae16198bb31c5f54856b4e3b678955a0079d
Author: Step Security Bot <[email protected]>
AuthorDate: Fri Oct 7 23:10:43 2022 -0700
[StepSecurity] ci: Harden GitHub Actions in merge-conflict-checker.yml
(#6802)
---
.github/workflows/merge-conflict-checker.yml | 5 +++++
1 file changed, 5 insertions(+)
diff --git a/.github/workflows/merge-conflict-checker.yml
b/.github/workflows/merge-conflict-checker.yml
index 4eb950c9421..a0fdb1b7a08 100644
--- a/.github/workflows/merge-conflict-checker.yml
+++ b/.github/workflows/merge-conflict-checker.yml
@@ -21,8 +21,13 @@ on:
pull_request_target:
types: [synchronize]
+permissions: # added using https://github.com/step-security/secure-workflows
+ contents: read
+
jobs:
triage:
+ permissions:
+ pull-requests: write # for eps1lon/actions-label-merge-conflict to
label PRs
runs-on: ubuntu-latest
steps:
- name: Conflict Check
