apache
chore: Set permissions for GitHub actions
Restrict the GitHub token permissions only to the required ones; this way, even if the attackers will succeed in compromising your workflow, they won’t be able to do much.
- Included permissions for the action. https://github.com/ossf/scorecard/blob/main/docs/checks.md#token-permissions
https://docs.github.com/en/actions/using-workflows/workflow-syntax-for-github-actions#permissions
https://docs.github.com/en/actions/using-jobs/assigning-permissions-to-jobs
Keeping your GitHub Actions and workflows secure Part 1: Preventing pwn requests
Signed-off-by: naveen [email protected]
Thanks for opening a pull request!
If this is not a minor PR. Could you open an issue for this pull request on JIRA? https://issues.apache.org/jira/browse/ARROW
Opening JIRAs ahead of time contributes to the Openness of the Apache Arrow project.
Then could you also rename pull request title in the following format?
ARROW-${JIRA_ID}: [${COMPONENT}] ${SUMMARY}
or
MINOR: [${COMPONENT}] ${SUMMARY}
See also:
![github-actions[bot] avatar](https://avatars.githubusercontent.com/in/15368?v=4 "Published by a pub.dev verified publisher"){kind=small}
Thanks, this is a good change. This is not a minor PR by our definition so please create a JIRA ticket for it :)
Thanks, this is a good change. This is not a minor PR by our definition so please create a JIRA ticket for it :)
I will do that. Thanks
@naveensrinivasan Ping! Could you create a JIRA ticket as requested? If you are not able to do it, please say so so that someone else can step up :-)
@naveensrinivasan Ping! Could you create a JIRA ticket as requested? If you are not able to do it, please say so so that someone else can step up :-)
I apologize. I won’t be able to do it now.