secure-repo icon indicating copy to clipboard operation
secure-repo copied to clipboard

Published 20 hours ago verified publisher icon step-security

[KB] Add GitHub token permissions for arduino/setup-arduino-cli Action

Open step-security-bot opened this issue 3 years ago • 1 comments

Knowledge Base is missing for arduino/setup-arduino-cli.

step-security-bot avatar Oct 03 '22 05:10 step-security-bot

Analysis

Action Name: arduino/setup-arduino-cli
Action Type: Node
GITHUB_TOKEN Matches: GITHUB_TOKEN,Token,token
Top language: TypeScript
Stars: 61
Private: false
Forks: 5

Endpoints Found

Endpoint Permission

FollowUp Links.

https://github.com/arduino/setup-arduino-cli/blob/28207372640f389771230f880c288f4caad7a9bc/tests/main.test.ts https://github.com/arduino/setup-arduino-cli/blob/28207372640f389771230f880c288f4caad7a9bc/src/installer.ts

action-security.yml

name: "Setup Arduino CLI"
github-token:
  action-input:
    input: token
    is-default: true
  permissions:

step-security-bot avatar Oct 03 '22 05:10 step-security-bot