forked from mirrors/nixpkgs
actions: add some permission restrictions
This commit is contained in:
Graham Christensen
parent
b7e08de1e9
commit
9d95ba3dd6
4
.github/workflows/labels.yml
vendored
4
.github/workflows/labels.yml
vendored
|
|
@ -4,6 +4,10 @@ on:
|
||||||
pull_request_target:
|
pull_request_target:
|
||||||
types: [edited, opened, synchronize, reopened]
|
types: [edited, opened, synchronize, reopened]
|
||||||
|
|
||||||
|
permissions:
|
||||||
|
contents: read
|
||||||
|
pull-requests: write
|
||||||
|
|
||||||
jobs:
|
jobs:
|
||||||
labels:
|
labels:
|
||||||
runs-on: ubuntu-latest
|
runs-on: ubuntu-latest
|
||||||
|
|
|
||||||
2
.github/workflows/manual-nixos.yml
vendored
2
.github/workflows/manual-nixos.yml
vendored
|
|
@ -1,5 +1,7 @@
|
||||||
name: "Build NixOS manual"
|
name: "Build NixOS manual"
|
||||||
|
|
||||||
|
permissions: read-all
|
||||||
|
|
||||||
on:
|
on:
|
||||||
pull_request_target:
|
pull_request_target:
|
||||||
branches:
|
branches:
|
||||||
|
|
|
||||||
2
.github/workflows/manual-nixpkgs.yml
vendored
2
.github/workflows/manual-nixpkgs.yml
vendored
|
|
@ -1,5 +1,7 @@
|
||||||
name: "Build Nixpkgs manual"
|
name: "Build Nixpkgs manual"
|
||||||
|
|
||||||
|
permissions: read-all
|
||||||
|
|
||||||
on:
|
on:
|
||||||
pull_request_target:
|
pull_request_target:
|
||||||
branches:
|
branches:
|
||||||
|
|
|
||||||
Loading…
Reference in a new issue