Skip to content

Commit

Permalink
Security changes to match dotnet=docs
Browse files Browse the repository at this point in the history
  • Loading branch information
adegeo committed Jul 27, 2024
1 parent 5e14e82 commit 7ffc53b
Show file tree
Hide file tree
Showing 3 changed files with 18 additions and 9 deletions.
20 changes: 13 additions & 7 deletions .github/workflows/check-for-build-warnings.yml
Original file line number Diff line number Diff line change
@@ -1,22 +1,28 @@
name: 'OPS status checker'

on:
pull_request_target:
pull_request:
types: [opened, synchronize, reopened]

permissions:
contents: read

jobs:
status_checker_job:
name: Look for build warnings
runs-on: ubuntu-latest
permissions:
statuses: write
issues: write
pull-requests: write
statuses: read
pull-requests: read
steps:
- uses: actions/checkout@v3
- uses: dotnet/docs-tools/actions/status-checker@main
- name: Harden Runner
uses: step-security/harden-runner@0d381219ddf674d61a7572ddd19d7941e271515c # v2.9.0
with:
egress-policy: audit

- uses: dotnet/docs-tools/actions/status-checker@5e8bcc78465d45a7544bba56509a1a69922b6a5a # main
with:
repo_token: ${{ secrets.GITHUB_TOKEN }}
docs_path: "dotnet-desktop-guide"
url_base_path: "dotnet/desktop"
opaque_leading_url_segments: "framework:view=netframeworkdesktop-4.8,net:view=netdesktop-7.0"
opaque_leading_url_segments: "framework:view=netframeworkdesktop-4.8,net:view=netdesktop-7.0,net:view=netdesktop-8.0"
5 changes: 4 additions & 1 deletion .github/workflows/live-protection.yml
Original file line number Diff line number Diff line change
@@ -1,4 +1,7 @@
on: [pull_request_target]
on: [pull_request]

permissions:
contents: read

jobs:
comment:
Expand Down
2 changes: 1 addition & 1 deletion .github/workflows/rebase-needed.yml
Original file line number Diff line number Diff line change
Expand Up @@ -2,7 +2,7 @@ name: "rebase required"

on:
push:
pull_request_target:
pull_request:
types: [synchronize]

jobs:
Expand Down

0 comments on commit 7ffc53b

Please sign in to comment.