Hopiu/cookiecutter-django
1
0
Fork 0
mirror of https://github.com/Hopiu/cookiecutter-django.git synced 2026-05-11 06:03:09 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions
cookiecutter-django/.github
History
Naveen e0c04fa0d3
Set permissions for GitHub actions (#3698) 
* chore: Set permissions for GitHub actions

 Restrict the GitHub token permissions only to the required ones; this way, even if the attackers will succeed in compromising your workflow, they won’t be able to do much.

- Included permissions for the action. https://github.com/ossf/scorecard/blob/main/docs/checks.md#token-permissions

https://docs.github.com/en/actions/using-workflows/workflow-syntax-for-github-actions#permissions

https://docs.github.com/en/actions/using-jobs/assigning-permissions-to-jobs

[Keeping your GitHub Actions and workflows secure Part 1: Preventing pwn requests](https://securitylab.github.com/research/github-actions-preventing-pwn-requests/)

Signed-off-by: naveen <172697+naveensrinivasan@users.noreply.github.com>

* Leave comment close to code

Co-authored-by: Bruno Alla <browniebroke@users.noreply.github.com>
2022-05-07 13:49:24 +01:00
..
ISSUE_TEMPLATE Update Discord invite link to not expire 2022-02-08 18:55:13 +00:00
workflows Set permissions for GitHub actions (#3698) 2022-05-07 13:49:24 +01:00
changelog-template.md Switch template to calendar versioning & automate releases (#3415) 2021-11-18 09:36:42 +00:00
CONTRIBUTORS-template.md Move template outside of the python script 2020-08-10 18:35:04 +01:00
contributors.json Update Contributors 2022-03-14 17:17:00 +00:00
dependabot.yml Configure Dependabot for npm packages at the template level (#3436) 2021-12-07 19:05:59 +00:00
FUNDING.yml Auto-format YAML in the .github folder 2021-11-19 22:06:56 +00:00
PULL_REQUEST_TEMPLATE.md Update pull request template 2021-12-20 11:51:52 +00:00