github.com
/
distribution
mirror of https://github.com/distribution/distribution
1
0
Fork 0
Code Releases Wiki Activity

build: harden codeql-analysis.yml permissions 

Signed-off-by: Alex <aleksandrosansan@gmail.com>
This commit is contained in:
Alex 2022-09-24 08:57:02 +02:00
parent e09a9f2dc2
commit 10975deab8
1 changed files with 7 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

7
.github/workflows/codeql-analysis.yml vendored
View File

@ -20,8 +20,15 @@ on:
schedule: schedule:
- cron: '41 13 * * 1' - cron: '41 13 * * 1'
permissions:
contents: read # to fetch code (actions/checkout)
jobs: jobs:
analyze: analyze:
permissions:
contents: read # to fetch code (actions/checkout)
security-events: write # to upload SARIF results (github/codeql-action/analyze)
name: Analyze name: Analyze
runs-on: ubuntu-latest runs-on: ubuntu-latest