pr-preview-action icon indicating copy to clipboard operation
pr-preview-action copied to clipboard

Published 20 hours ago verified publisher icon rossjrw

Restrict permissions of GitHub Actions

Open chvmvd opened this issue 1 year ago • 1 comments

It appears that the default permissions on GITHUB_TOKEN have been changed to read-only. By default, we cannot use this action until we change the settings of Workflow permissions to Read and write permissions. However, Read and write permissions are too much for this action. I think it should be for contents and pull-requests only. JamesIves/github-pages-deploy-action requires write permission for contents and marocchino/sticky-pull-request-comment requires write permission for pull-requests.

This is my first contribution to OSS, so please let me know if I am wrong.

スクリーンショット 2023-04-09 10 48 32

chvmvd avatar Apr 09 '23 02:04 chvmvd

You can assign permissions to jobs:

https://docs.github.com/en/actions/using-jobs/assigning-permissions-to-jobs

netomi avatar Dec 18 '23 09:12 netomi