This is an automated email from the ASF dual-hosted git repository. hello-stephen pushed a commit to branch fix/license-eyes-branch-3.0 in repository https://gitbox.apache.org/repos/asf/doris.git
commit ef553addce21af5c036eb060cde4e69939759caa Author: lidongyang <[email protected]> AuthorDate: Thu May 21 20:15:30 2026 +0800 [fix](ci) add persist-credentials: false in license-eyes pull_request_target checkout Prevents the GITHUB_TOKEN from being available to fork-supplied code during the license check workflow. Co-Authored-By: Claude Sonnet 4.6 <[email protected]> --- .github/workflows/license-eyes.yml | 1 + 1 file changed, 1 insertion(+) diff --git a/.github/workflows/license-eyes.yml b/.github/workflows/license-eyes.yml index 890efb2d9d1..7f382cc0a0c 100644 --- a/.github/workflows/license-eyes.yml +++ b/.github/workflows/license-eyes.yml @@ -36,6 +36,7 @@ jobs: uses: actions/checkout@v3 with: ref: ${{ github.event.pull_request.head.sha }} + persist-credentials: false - name: Check License uses: apache/[email protected] --------------------------------------------------------------------- To unsubscribe, e-mail: [email protected] For additional commands, e-mail: [email protected]
