ivuorinen/base-configs
1
0
Fork 0
mirror of https://github.com/ivuorinen/base-configs.git synced 2026-02-27 14:53:01 +00:00
Code Issues Packages Projects Releases Wiki Activity
Files
ee3606e3cb811b17b89271e9e176e466dbf61511
base-configs/.github
History
Ismo Vuorinen ee3606e3cb fix(ci): consolidate CodeQL workflows with proper permissions (#473) 
* fix(ci): consolidate CodeQL workflows with proper permissions

Merge codeql.yml and codeql-analysis.yml into a single workflow.
Add top-level permissions block to fix Checkov CKV2_GHA_1.

Changes:
- Add top-level permissions (actions: read, contents: read)
- Add merge_group trigger
- Enable security-and-quality query suite
- Use javascript-typescript language with build-mode: none
- Remove redundant codeql-analysis.yml

* fix(ci): include all required permissions at job level

Job-level permissions override top-level permissions in GitHub Actions
rather than extending them. Add actions: read and contents: read to
the job-level block so the analyze job retains all required permissions.
2026-02-26 22:20:14 +02:00
..
workflows
fix(ci): consolidate CodeQL workflows with proper permissions (#473)
2026-02-26 22:20:14 +02:00
CODEOWNERS
Initial commit
2023-05-04 15:52:34 +03:00
labels.yml
chore: linting and semantic-commit plugins
2025-12-06 23:54:07 +01:00
renovate.json
chore: tweaks and cleanup
2024-08-21 17:23:59 +03:00
SECURITY.md
chore: linting and semantic-commit plugins
2025-12-06 23:54:07 +01:00