Gnous/mailcow
2
0
Fork 0
Code Issues Pull Requests 1 Packages Projects Releases Wiki Activity

GitHub Workflows security hardening (#4761)

Browse Source 
* build: harden integration_tests.yml permissions

Signed-off-by: Alex <aleksandrosansan@gmail.com>

* build: harden image_builds.yml permissions

Signed-off-by: Alex <aleksandrosansan@gmail.com>

Signed-off-by: Alex <aleksandrosansan@gmail.com>
Co-authored-by: Niklas Meyer <62480600+DerLinkman@users.noreply.github.com>
This commit is contained in:
Alex 2022-09-25 14:42:01 +02:00 committed by GitHub
parent c4d5072e5c
commit f28e18e676
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
2 changed files with 6 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

3
.github/workflows/image_builds.yml vendored
View File

@ -5,6 +5,9 @@ on:
branches: [ "master", "staging" ] branches: [ "master", "staging" ]
workflow_dispatch: workflow_dispatch:
permissions:
contents: read # to fetch code (actions/checkout)
jobs: jobs:
docker_image_builds: docker_image_builds:
strategy: strategy:

3
.github/workflows/integration_tests.yml vendored
View File

@ -5,6 +5,9 @@ on:
branches: [ "master", "staging" ] branches: [ "master", "staging" ]
workflow_dispatch: workflow_dispatch:
permissions:
contents: read
jobs: jobs:
integration_tests: integration_tests:
runs-on: ubuntu-latest runs-on: ubuntu-latest