File tree 14 files changed +63
-19
lines changed
14 files changed +63
-19
lines changed Original file line number Diff line number Diff line change 1818 - ' mkdocs.yml'
1919 - ' Makefile'
2020
21+ permissions :
22+ contents : read
23+
2124jobs :
2225 docs :
2326 runs-on : ubuntu-latest
Original file line number Diff line number Diff line change 77 - cron : ' 0 * * * *'
88
99permissions :
10- id-token : write
11- actions : read
12- checks : read
1310 contents : read
14- deployments : read
15- issues : read
16- discussions : read
17- packages : read
18- pages : read
19- pull-requests : read
20- repository-projects : read
21- security-events : read
22- statuses : read
2311
2412jobs :
2513 dispatch_token :
14+ permissions :
15+ id-token : write
16+ actions : read
17+ checks : read
18+ deployments : read
19+ issues : read
20+ discussions : read
21+ packages : read
22+ pages : read
23+ pull-requests : read
24+ repository-projects : read
25+ security-events : read
26+ statuses : read
2627 concurrency :
2728 group : analytics
2829 runs-on : ubuntu-latest
Original file line number Diff line number Diff line change 77 workflow_dispatch : {}
88
99permissions :
10- id-token : write
1110 contents : write
12- pages : write
1311
1412jobs :
1513 docs :
1614 runs-on : ubuntu-latest
1715 environment : Docs
16+ permissions :
17+ id-token : write
1818 steps :
1919 - uses : actions/checkout@c85c95e3d7251135ab7dc9ce3241c5835cc595a9 # v3.5.3
2020 - name : Set up Python
Original file line number Diff line number Diff line change 2323 - ' powertools-validation/**'
2424 - ' pom.xml'
2525 - ' .github/workflows/pr_artifacts_size.yml'
26+
27+ permissions :
28+ contents : read
29+
2630jobs :
2731 codecheck :
2832 runs-on : ubuntu-latest
Original file line number Diff line number Diff line change 4545 - ' pom.xml'
4646 - ' examples/pom.xml'
4747 - ' .github/workflows/**'
48+
49+ permissions :
50+ contents : read
51+
4852jobs :
4953 build-corretto :
5054 runs-on : ubuntu-latest
5862 AWS_REGION : eu-west-1
5963 permissions :
6064 id-token : write # needed to interact with GitHub's OIDC Token endpoint.
61- contents : read
6265 steps :
6366 - uses : actions/checkout@c85c95e3d7251135ab7dc9ce3241c5835cc595a9 # v3.5.3
6467 - name : Setup java
Original file line number Diff line number Diff line change 4141 - ' pom.xml'
4242 - ' examples/pom.xml'
4343 - ' .github/workflows/**'
44+
45+ permissions :
46+ contents : read
47+
4448jobs :
4549 build-corretto :
4650 runs-on : ubuntu-latest
5458 AWS_REGION : eu-west-1
5559 permissions :
5660 id-token : write # needed to interact with GitHub's OIDC Token endpoint.
57- contents : read
5861 steps :
5962 - uses : actions/checkout@c85c95e3d7251135ab7dc9ce3241c5835cc595a9 # v3.5.3
6063 - name : Setup java
Original file line number Diff line number Diff line change 1111 - v2
1212 paths :
1313 - ' examples/**'
14+
15+ permissions :
16+ contents : read
17+
1418jobs :
1519 linter :
1620 runs-on : ubuntu-latest
Original file line number Diff line number Diff line change 44 types :
55 - published
66 workflow_dispatch : {}
7+
8+ permissions :
9+ contents : read
10+
711jobs :
812 publish :
913 runs-on : ubuntu-latest
14+ permissions :
15+ id-token : write
1016 steps :
1117 - uses : actions/checkout@c85c95e3d7251135ab7dc9ce3241c5835cc595a9 # v3.5.3
1218 - name : Set up Maven Central Repository
Original file line number Diff line number Diff line change 66 branches :
77 - main
88
9+ permissions :
10+ contents : read
11+
912jobs :
1013 update_release_draft :
1114 runs-on : ubuntu-latest
15+ permissions :
16+ id-token : write
1217 steps :
1318 - uses : release-drafter/release-drafter@569eb7ee3a85817ab916c8f8ff03a5bd96c9c83e # v5.23.0
1419 env :
Original file line number Diff line number Diff line change 66 description : ' Release number to upgrade to. For example X.X.X. Follow Semantic Versioning when deciding on next version.'
77 required : true
88
9+ permissions :
10+ contents : read
11+
912jobs :
1013 build :
1114 runs-on : ubuntu-latest
15+ permissions :
16+ id-token : write
1217 steps :
1318 - uses : actions/checkout@c85c95e3d7251135ab7dc9ce3241c5835cc595a9 # v3.5.3
1419 - name : Get current date
Original file line number Diff line number Diff line change 2727 paths :
2828 - ' powertools-e2e-tests/**'
2929
30+ permissions :
31+ contents : read
32+
3033jobs :
3134 e2e :
3235 runs-on : ubuntu-latest
Original file line number Diff line number Diff line change 2727 paths :
2828 - ' powertools-e2e-tests/**'
2929
30+ permissions :
31+ contents : read
32+
3033jobs :
3134 e2e :
3235 runs-on : ubuntu-latest
4043 JAVA_VERSION : ${{ matrix.java }}
4144 permissions :
4245 id-token : write # needed to interact with GitHub's OIDC Token endpoint.
43- contents : read
4446 steps :
4547 - uses : actions/checkout@c85c95e3d7251135ab7dc9ce3241c5835cc595a9 # v3.5.3
4648 - name : Setup java
Original file line number Diff line number Diff line change 1919 paths :
2020 - " .github/workflows/**"
2121
22+ permissions :
23+ contents : read
24+
2225jobs :
2326 enforce_pinned_workflows :
2427 name : Harden Security
2528 runs-on : ubuntu-latest
26- permissions :
27- contents : read # checkout code and subsequently GitHub action workflows
2829 steps :
2930 - name : Checkout code
3031 uses : actions/checkout@c85c95e3d7251135ab7dc9ce3241c5835cc595a9 # v3.5.3
Original file line number Diff line number Diff line change 1919 - ' powertools-test-suite/**'
2020 - ' pom.xml'
2121 - ' .github/workflows/**'
22+
23+ permissions :
24+ contents : read
25+
2226jobs :
2327 codecheck :
2428 runs-on : ubuntu-latest
You can’t perform that action at this time.
0 commit comments