[
https://issues.apache.org/jira/browse/AVRO-4233?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=18063740#comment-18063740
]
ASF subversion and git services commented on AVRO-4233:
-------------------------------------------------------
Commit a6bdb0a5314faa15e948c2c55649ed724c7a0f8a in avro's branch
refs/heads/main from Ryan Skraba
[ https://gitbox.apache.org/repos/asf?p=avro.git;h=a6bdb0a531 ]
AVRO-4233: [ci] Remove explicit GITHUB_TOKEN (#3659)
* AVRO-4233: [ci] Remove explicit GITHUB_TOKEN
* Try with `pull_request`
* Restore pull_request_target
---------
Co-authored-by: Martin Grigorov <[email protected]>
> Add CodeQL for actions
> ----------------------
>
> Key: AVRO-4233
> URL: https://issues.apache.org/jira/browse/AVRO-4233
> Project: Apache Avro
> Issue Type: Task
> Components: build
> Reporter: Ryan Skraba
> Priority: Major
> Labels: pull-request-available
> Time Spent: 1h 10m
> Remaining Estimate: 0h
>
> Some guidelines from Infra:
> *
> https://cwiki.apache.org/confluence/pages/viewpage.action?pageId=321719166#GitHubActionsSecurity-Buildstriggeredwithpull_request_target
> * https://infra.apache.org/github-actions-policy.html
> One priority action would be to remove the explicit GITHUB_TOKEN from the
> labeler.yml
--
This message was sent by Atlassian Jira
(v8.20.10#820010)
