secure-repo icon indicating copy to clipboard operation
secure-repo copied to clipboard

Published 20 hours ago verified publisher icon step-security

[KB] Add GitHub token permissions for arduino/arduino-lint-action Action

Open step-security-bot opened this issue 3 years ago • 2 comments

Knowledge Base is missing for arduino/arduino-lint-action.

step-security-bot avatar Oct 03 '22 05:10 step-security-bot

Analysis

Action Name: arduino/arduino-lint-action
Action Type: Node
GITHUB_TOKEN Matches: token,GITHUB_TOKEN
Top language: TypeScript
Stars: 23
Private: false
Forks: 7

Endpoints Found

Endpoint Permission

FollowUp Links.

https://github.com/arduino/arduino-lint-action/blob/e26fd2724ebc5d1b5f0c32aa575c9f68fab8ab4f/src/installer.ts https://github.com/arduino/arduino-lint-action/blob/ef57ccbdaef2d211c2f3496b5fbf176adc0af0ae/tests/main.test.ts

action-security.yml

name: "arduino/arduino-lint-action"
github-token:
  action-input:
    input: token
    is-default: true
  permissions:

step-security-bot avatar Oct 03 '22 05:10 step-security-bot

I have taken this issue

vandana41 avatar Oct 06 '22 17:10 vandana41