[PR #44] [MERGED] Potential fix for code scanning alert no. 3: Workflow does not contain permissions #51

New issue

Closed

opened 2026-03-02 02:59:32 +03:00 by kerem · 0 comments

kerem commented 2026-03-02 02:59:32 +03:00

Owner

Copy link

📋 Pull Request Information

Original PR: https://github.com/buildplan/du_setup/pull/44
Author: @buildplan
Created: 7/23/2025
Status: ✅ Merged
Merged: 7/23/2025
Merged by: @buildplan

Base: main ← Head: alert-autofix-3

---

📝 Commits (1)

• 0622540 Potential fix for code scanning alert no. 3: Workflow does not contain permissions

📊 Changes

1 file changed (+3 additions, -0 deletions)

View changed files

📝 .github/workflows/lint.yml (+3 -0)

📄 Description

Potential fix for https://github.com/buildplan/du_setup/security/code-scanning/3

To fix the issue, we will add a permissions block at the root of the workflow file. Since the workflow only needs to read the repository contents (e.g., to lint the shell script), we will set contents: read. This ensures that the workflow has the minimum required permissions and no write access.

---

Suggested fixes powered by Copilot Autofix. Review carefully before merging.

---

_{🔄 This issue represents a GitHub Pull Request. It cannot be merged through Gitea due to API limitations.}

## 📋 Pull Request Information **Original PR:** https://github.com/buildplan/du_setup/pull/44 **Author:** [@buildplan](https://github.com/buildplan) **Created:** 7/23/2025 **Status:** ✅ Merged **Merged:** 7/23/2025 **Merged by:** [@buildplan](https://github.com/buildplan) **Base:** `main` ← **Head:** `alert-autofix-3` --- ### 📝 Commits (1) - [`0622540`](https://github.com/buildplan/du_setup/commit/062254046fa728863cef05588d5d46112862ee30) Potential fix for code scanning alert no. 3: Workflow does not contain permissions ### 📊 Changes **1 file changed** (+3 additions, -0 deletions) <details> <summary>View changed files</summary> 📝 `.github/workflows/lint.yml` (+3 -0) </details> ### 📄 Description Potential fix for [https://github.com/buildplan/du_setup/security/code-scanning/3](https://github.com/buildplan/du_setup/security/code-scanning/3) To fix the issue, we will add a `permissions` block at the root of the workflow file. Since the workflow only needs to read the repository contents (e.g., to lint the shell script), we will set `contents: read`. This ensures that the workflow has the minimum required permissions and no write access. --- _Suggested fixes powered by Copilot Autofix. Review carefully before merging._ --- _{🔄 This issue represents a GitHub Pull Request. It cannot be merged through Gitea due to API limitations.}

kerem 2026-03-02 02:59:32 +03:00

• closed this issue
• added the
  pull-request
  label

Sign in to join this conversation.

No Branch/Tag specified

Branches Tags

main

modular_wip

v0.80.5

v0.80.4

v0.80.3

v0.80.2

v0.80.1

v0.80.0

v0.79.1

v0.79.0

v0.78.5

v0.78.4

v0.78.3

v0.78.2

v0.78.1

v0.78

v0.77.2

v0.77.1

v0.77

v0.76

v0.75

v0.74

v0.73

v0.72

v0.71

v0.70.1

v0.70

v0.69

v0.68

v0.67

v0.66

v0.65

v0.64

v0.63

v0.62

v0.61

v0.60

v0.59

v0.58

v0.57

v0.56

v0.55

v0.54

v0.53

0.53

v0.52

v0.51

v0.50

v4.3

v4.2

v4.1

v4.0

v3.13

v3.12

v3.11

v3.10

v3.9

Labels

Clear labels   

bug

  

enhancement

  

enhancement

  

pull-request

Mirrored from GitHub Pull Request

No labels

bug

enhancement

enhancement

pull-request

Milestone

Clear milestone

No items

No milestone

Projects

Clear projects

No items

No project

Assignees

Clear assignees

No assignees

1 participant

Notifications

Subscribe

Due date

The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference

starred/du_setup#51

No description provided.