Skip to content

ci: add workflow permissions#377

Merged
petar-omni merged 2 commits intomainfrom
ci/permission
May 22, 2025
Merged

ci: add workflow permissions#377
petar-omni merged 2 commits intomainfrom
ci/permission

Conversation

@petar-omni
Copy link
Copy Markdown
Contributor

@petar-omni petar-omni commented May 22, 2025

Added

Description of new functionality, feature, or content that has been added in this pull request.

Changed

Description of the modifications made to existing functionality, feature, or content in this pull request. This could include changes to code, CI, documentation, etc.

Copilot AI review requested due to automatic review settings May 22, 2025 13:03
@changeset-bot
Copy link
Copy Markdown

changeset-bot Bot commented May 22, 2025
edited
Loading

⚠️ No Changeset found

Latest commit: 4eba09f

Merging this PR will not cause a version bump for any packages. If these changes should not result in a new version, you're good to go. If these changes should result in a version bump, you need to add a changeset.

This PR includes no changesets

When changesets are added to this PR, you'll see the packages that this PR includes changesets for and the associated semver types

Click here to learn what changesets are, and how to add one.

Click here if you're a maintainer who wants to add a changeset to this PR

@vercel
Copy link
Copy Markdown

vercel Bot commented May 22, 2025
edited
Loading

The latest updates on your projects. Learn more about Vercel for Git ↗︎

Name Status Preview Comments Updated (UTC)
staging-widget ✅ Ready (Inspect) Visit Preview 💬 Add feedback May 22, 2025 1:11pm
stakekit-widget ✅ Ready (Inspect) Visit Preview 💬 Add feedback May 22, 2025 1:11pm

Copilot AI reviewed May 22, 2025
View reviewed changes
Copy link
Copy Markdown
Contributor

Copilot AI left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Pull Request Overview

This PR adds explicit GitHub Actions permissions for the release and CI workflows to tighten scope of the GITHUB_TOKEN.

  • Grants pull-requests: write and contents: write to the release job
  • Grants contents: read to the CI job

Reviewed Changes

Copilot reviewed 2 out of 2 changed files in this pull request and generated 1 comment.

File Description
.github/workflows/release.yml Added permissions block with pull-requests and contents write scopes for the release job
.github/workflows/ci.yml Added permissions block with contents: read for the CI job
Comments suppressed due to low confidence (1)

.github/workflows/ci.yml:17

  • [nitpick] The explicit contents: read permission is redundant since GITHUB_TOKEN has read access to contents by default when no permissions block is specified. You can remove this block to simplify the workflow.
permissions:

Comment thread .github/workflows/release.yml
@petar-omni petar-omni requested a review from Philippoes May 22, 2025 13:05
@petar-omni
Update .github/workflows/release.yml
4eba09f 
Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com>
@petar-omni petar-omni merged commit 58e2afb into main May 22, 2025
7 checks passed
@petar-omni petar-omni deleted the ci/permission branch May 22, 2025 14:12
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

Copilot code review Copilot Copilot left review comments

@Philippoes Philippoes Philippoes approved these changes

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@petar-omni @Philippoes