Merge pull request #67 from wneessen/token-permissions

Add read permissions to GitHub workflows
This commit is contained in:
Winni Neessen 2024-03-17 20:23:45 +01:00 committed by GitHub
commit 7f8fbb05bc
No known key found for this signature in database
GPG key ID: B5690EEEBB952194
3 changed files with 6 additions and 1 deletions

View file

@ -83,7 +83,7 @@ jobs:
- run: |
echo "Build Application using Go"
/usr/bin/env GOTOOLCHAIN=go1.22.1+auto go build -ldflags '-s -w' -o apg github.com/wneessen/apg-go/cmd/apg
/usr/bin/env GOTOOLCHAIN=go1.22.1+auto go build -a -installsuffix cgo -ldflags '-w -s -extldflags "-static"' -o apg github.com/wneessen/apg-go/cmd/apg
- name: Perform CodeQL Analysis
uses: github/codeql-action/analyze@v3

View file

@ -19,6 +19,9 @@ on:
pull_request:
branches: [ main ]
permissions:
contents: read
env:
# Use docker.io for Docker Hub if empty
REGISTRY: ghcr.io

View file

@ -3,6 +3,8 @@
# SPDX-License-Identifier: CC0-1.0
name: REUSE Compliance Check
permissions:
contents: read
on: [push, pull_request]