secure-repo icon indicating copy to clipboard operation
secure-repo copied to clipboard

Published 20 hours ago verified publisher icon step-security

[KB] Add GitHub token permissions for peter-evans/dockerhub-description Action

Open step-security-bot opened this issue 3 years ago • 2 comments

Knowledge Base is missing for peter-evans/dockerhub-description.

step-security-bot avatar Oct 07 '22 21:10 step-security-bot

Analysis

Action Name: peter-evans/dockerhub-description
Action Type: Node
GITHUB_TOKEN Matches: Token,token
Top language: TypeScript
Stars: 196
Private: false
Forks: 33

Endpoints Found

Endpoint Permission

FollowUp Links.

https://github.com/peter-evans/dockerhub-description/blob/da890086d39c735e41d8823c8a95bde4302c3d64/src/main.ts https://github.com/peter-evans/dockerhub-description/blob/ae9aa33b7a26f2bbc30fac934af4b054be232f92/src/dockerhub-helper.ts

action-security.yml

name: 'Docker Hub Description'
github-token:
  environment-variable-name: <FigureOutYourself>
    is-default: false
  permissions:

step-security-bot avatar Oct 07 '22 21:10 step-security-bot

I have taken this issue

vandana41 avatar Oct 10 '22 03:10 vandana41