kevinjqliu opened a new pull request, #3082:
URL: https://github.com/apache/iceberg-python/pull/3082
<!--
Thanks for opening a pull request!
-->
<!-- In the case this PR will resolve an issue, please replace
${GITHUB_ISSUE_ID} below with the actual Github issue id. -->
<!-- Closes #${GITHUB_ISSUE_ID} -->
# Rationale for this change
Added explicit permissions blocks to GitHub Actions workflows to satisfy
CodeQL actions/missing-workflow-permissions. (See the [Security tab on
Github](https://github.com/apache/iceberg-python/security/code-scanning))
Defaulted workflows to `contents: read` where jobs only need
checkout/build/test/artifact operations.
The one write permission
* `contents: write` is set only for the docs publish job in
`python-release-docs.yml`, because that job force-pushes generated site content
to the gh-pages branch.
## Are these changes tested?
## Are there any user-facing changes?
<!-- In the case of user-facing changes, please add the changelog label. -->
--
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.
To unsubscribe, e-mail: [email protected]
For queries about this service, please contact Infrastructure at:
[email protected]
---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]
