[Python-checkins] [3.10] ci: add GitHub token permissions (GH-92999) (#98161)
ezio-melotti
webhook-mailer at python.org
Mon Oct 10 15:46:14 EDT 2022
https://github.com/python/cpython/commit/64ce2cba9890b4b8522760090286a756cbefa33f
commit: 64ce2cba9890b4b8522760090286a756cbefa33f
branch: 3.10
author: Ezio Melotti <ezio.melotti at gmail.com>
committer: ezio-melotti <ezio.melotti at gmail.com>
date: 2022-10-10T21:46:09+02:00
summary:
[3.10] ci: add GitHub token permissions (GH-92999) (#98161)
* ci: add GitHub token permissions (#92999)
(cherry picked from commit b96e20c1d9be4e6d5ea3e48c9c97e5ecd02f6055)
* [3.10] ci: add GitHub token permissions (GH-92999).
(cherry picked from commit b96e20c1d9be4e6d5ea3e48c9c97e5ecd02f6055)
Co-authored-by: Varun Sharma <varunsh at stepsecurity.io>
Co-authored-by: Varun Sharma <varunsh at stepsecurity.io>
files:
M .github/workflows/build.yml
M .github/workflows/build_msi.yml
M .github/workflows/doc.yml
diff --git a/.github/workflows/build.yml b/.github/workflows/build.yml
index 1545ae87dca0..c0744ce5033f 100644
--- a/.github/workflows/build.yml
+++ b/.github/workflows/build.yml
@@ -19,6 +19,9 @@ on:
- 3.8
- 3.7
+permissions:
+ contents: read
+
jobs:
check_source:
name: 'Check for source changes'
diff --git a/.github/workflows/build_msi.yml b/.github/workflows/build_msi.yml
index 201098a63579..04917ff184aa 100644
--- a/.github/workflows/build_msi.yml
+++ b/.github/workflows/build_msi.yml
@@ -20,6 +20,9 @@ on:
paths:
- 'Tools/msi/**'
+permissions:
+ contents: read
+
jobs:
build_win32:
name: 'Windows (x86) Installer'
diff --git a/.github/workflows/doc.yml b/.github/workflows/doc.yml
index e2501589d6e6..eb4884a48732 100644
--- a/.github/workflows/doc.yml
+++ b/.github/workflows/doc.yml
@@ -20,6 +20,9 @@ on:
- 'Doc/**'
- 'Misc/**'
+permissions:
+ contents: read
+
jobs:
build_doc:
name: 'Docs'
More information about the Python-checkins
mailing list