Merge pull request #549 from crazy-max/zizmor-fixes

ci: restrict update-dist GitHub App token scope
2026-05-25 05:14:19 +08:00 · 2026-05-21 14:58:05 +02:00 · 2026-05-21 14:27:36 +02:00
1 changed files with 2 additions and 0 deletions
--- a/.github/workflows/update-dist.yml
+++ b/.github/workflows/update-dist.yml
@ -26,6 +26,8 @@ jobs:
          app-id: ${{ secrets.GHACTIONS_REPO_WRITE_APP_ID }}
          private-key: ${{ secrets.GHACTIONS_REPO_WRITE_APP_PRIVATE_KEY }}
          owner: docker
          repositories: setup-buildx-action
          permission-contents: write
      -
        name: Checkout
        uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
Author	SHA1	Message	Date
CrazyMax	fe05060e96	Merge pull request #549 from crazy-max/zizmor-fixes ci: restrict update-dist GitHub App token scope	2026-05-21 14:58:05 +02:00
CrazyMax	d717e33d65	ci: restrict update-dist GitHub App token scope Signed-off-by: CrazyMax <1951866+crazy-max@users.noreply.github.com>	2026-05-21 14:27:36 +02:00