Skip to content

chore(ci): address security findings flagged by zizmor#766

Open
morganchen12 wants to merge 1 commit into
masterfrom
mc/zizmor
Open

chore(ci): address security findings flagged by zizmor#766
morganchen12 wants to merge 1 commit into
masterfrom
mc/zizmor

Conversation

@morganchen12

Copy link
Copy Markdown
  • Applied persist-credentials: false to checkout steps to prevent credential leakage.
  • Added explicit workflow-level contents: read permissions.
  • Added explicit job-level permissions to publish_release in release.yml.

- Applied `persist-credentials: false` to checkout steps to prevent credential leakage.
- Added explicit workflow-level `contents: read` permissions.
- Added explicit job-level permissions to `publish_release` in `release.yml`.
@gemini-code-assist

Copy link
Copy Markdown
Contributor

Note

Gemini is unable to generate a review for this pull request due to the file types involved not being currently supported.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

None yet

Projects

None yet

Development

Successfully merging this pull request may close these issues.

2 participants