Skip to content

fix(workflows): restrict permissions to contents: read #3293

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
wants to merge 2 commits into
base: main
Choose a base branch
from
Open

fix(workflows): restrict permissions to contents: read #3293

wants to merge 2 commits into from

Conversation

onixlas
Copy link

@onixlas onixlas commented Sep 1, 2025

This PR updates the .github/workflows/broken-links-site.yml workflow to explicitly set minimal permissions.

  • Added: 
    permissions: 
  contents: read
  • This adheres to the principle of least privilege.
  • Prevents potential write access to the repository that is not required.

@onixlas
fix(workflows): restrict permissions to contents: read
c54b0a2 
This PR updates the `.github/workflows/broken-links-site.yml` workflow to explicitly set minimal permissions.

- Added:
  ```yaml
  permissions:
    contents: read
  ```
- This adheres to the principle of least privilege.
- Prevents potential write access to the repository that is not required.
@netlify Netlify
Copy link

netlify bot commented Sep 1, 2025
edited
Loading

Deploy Preview for relaxed-lollipop-b6bc17 ready!

Name Link
🔨 Latest commit 9a73610
🔍 Latest deploy log https://app.netlify.com/projects/relaxed-lollipop-b6bc17/deploys/68b5c89e5c255d00083b1503
😎 Deploy Preview https://deploy-preview-3293--relaxed-lollipop-b6bc17.netlify.app
📱 Preview on mobile
Toggle QR Code...

QR Code

Use your smartphone camera to open QR code link.

To edit notification comments on pull requests, go to your Netlify project configuration.

@george-gca
Copy link
Collaborator

I believe this can also be set to .github/workflows/broken-links.yml.

@onixlas
fix(workflows): set minimal permissions for broken-links workflow
9a73610 
Updated GitHub Actions broken-links workflow to explicitly
set minimal repository permissions.
@onixlas
Copy link
Author

onixlas commented Sep 1, 2025

I believe this can also be set to .github/workflows/broken-links.yml.

Yes, sure. I've made changes only to .github/workflows/broken-links-site.yml, because it's my first pull request to this project and I wanted to keep it small. In the second commit I've applied the same changes to .github/workflows/broken-links.yml

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@george-gca george-gca george-gca approved these changes

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@onixlas @george-gca