Conversation
taddes
force-pushed
the
chore/actions-security-policy-updates-STOR-502
branch
from
9d149a2 to
ef931ae
Compare
| permissions: | ||
| contents: read | ||
| checks: write | ||
| uses: mozilla/probe-scraper/.github/workflows/glean.yaml@main |
There was a problem hiding this comment.
it would be a good idea to pin this action to a hash but it's not urgent, I didn't update the hash for it so I don't break any workflows
There was a problem hiding this comment.
Thanks! I added that, appreciated you pointing it out!
taddes
force-pushed
the
chore/actions-security-policy-updates-STOR-502
branch
from
de70207 to
63b5b92
Compare
.github/dependabot.yml
Outdated
| - "/tools/tokenserver/loadtests" | ||
| schedule: | ||
| interval: "weekly" | ||
| timezone: UCT |
There was a problem hiding this comment.
| timezone: UCT | |
| timezone: UTC |
There was a problem hiding this comment.
My bad, thanks for catching the typo.
.github/dependabot.yml
Outdated
| directory: "/" | ||
| schedule: | ||
| interval: "weekly" | ||
| timezone: UCT |
There was a problem hiding this comment.
| timezone: UCT | |
| timezone: UTC |
chenba
left a comment
chenba
left a comment
There was a problem hiding this comment.
I don't have access to the doc linked from the issue, but the PR seem reasonable enough
I'll ask for access so you can see the doc 👍 |
Thanks, but no need, I got access this morning. |
3 participants
Description
A number of updates to secure our GitHub actions were required after a recent audit. This includes best practices set out by our security team.
Issue(s)
Closes STOR-502.