ivuorinen/base-configs-browserslist
1
0
Fork 0
mirror of https://github.com/ivuorinen/base-configs-browserslist.git synced 2026-03-09 20:57:31 +00:00
Code Issues Packages Projects Releases Wiki Activity

chore: enforce least-privilege permissions in GitHub Actions workflows

Browse Source 
Set top-level `permissions: {}` on all workflows and move required
permissions to job level. Switch publish.yml from secrets.PAT to
secrets.GITHUB_TOKEN so semantic-release can comment on PRs/issues.
This commit is contained in:
Ismo Vuorinen
2026-02-27 23:03:55 +02:00
parent 757058ee7f
commit 1c861d1adc
6 changed files with 13 additions and 13 deletions
Download Patch File Download Diff File Expand all files Collapse all files

5
.github/workflows/stale.yml vendored
View File

@@ -8,10 +8,7 @@ on:
workflow_call:
workflow_dispatch:
permissions:
contents: read
packages: read
statuses: read
permissions: {}
jobs:
stale: