From d0d6c135ec7ca46c9a3598645c3eae4f46c854e5 Mon Sep 17 00:00:00 2001 From: Sam <109683132+kernelsam@users.noreply.github.com> Date: Fri, 26 Jan 2024 10:57:02 -0800 Subject: [PATCH] senzing-factory/build-resources#15 update go workflow permissions --- .github/workflows/go-proxy-pull.yaml | 5 +++++ .github/workflows/go-test-darwin.yaml | 5 +++++ .github/workflows/go-test-linux.yaml | 5 +++++ .github/workflows/go-test-windows.yaml | 5 +++++ .github/workflows/gofmt.yaml | 5 +++++ .github/workflows/gosec.yaml | 5 +++++ .github/workflows/make-go-github-file.yaml | 6 +++++- .github/workflows/make-go-tag.yaml | 6 +++++- 8 files changed, 40 insertions(+), 2 deletions(-) diff --git a/.github/workflows/go-proxy-pull.yaml b/.github/workflows/go-proxy-pull.yaml index 021ce40..4949c3b 100644 --- a/.github/workflows/go-proxy-pull.yaml +++ b/.github/workflows/go-proxy-pull.yaml @@ -5,10 +5,15 @@ # - https://futurestud.io/tutorials/github-actions-run-a-workflow-when-creating-a-tag name: go-proxy-pull.yaml + on: push: tags: - "v[0-9]+.[0-9]+.[0-9]+" + +permissions: + contents: write + jobs: go-proxy-pull: runs-on: ubuntu-latest diff --git a/.github/workflows/go-test-darwin.yaml b/.github/workflows/go-test-darwin.yaml index 48e9421..da06110 100644 --- a/.github/workflows/go-test-darwin.yaml +++ b/.github/workflows/go-test-darwin.yaml @@ -2,7 +2,12 @@ # - https://github.com/marketplace/actions/setup-go-environment name: go-test-darwin.yaml + on: [push] + +permissions: + contents: read + jobs: go-test-darwin: runs-on: ${{ matrix.os }} diff --git a/.github/workflows/go-test-linux.yaml b/.github/workflows/go-test-linux.yaml index 2894ed4..73f9591 100644 --- a/.github/workflows/go-test-linux.yaml +++ b/.github/workflows/go-test-linux.yaml @@ -2,7 +2,12 @@ # - https://github.com/marketplace/actions/setup-go-environment name: go-test-linux.yaml + on: [push] + +permissions: + contents: read + jobs: go-test-linux: runs-on: ${{ matrix.os }} diff --git a/.github/workflows/go-test-windows.yaml b/.github/workflows/go-test-windows.yaml index 875f0e0..4f33717 100644 --- a/.github/workflows/go-test-windows.yaml +++ b/.github/workflows/go-test-windows.yaml @@ -2,7 +2,12 @@ # - https://github.com/marketplace/actions/setup-go-environment name: go-test-windows.yaml + on: [push] + +permissions: + contents: read + jobs: go-test-windows: runs-on: ${{ matrix.os }} diff --git a/.github/workflows/gofmt.yaml b/.github/workflows/gofmt.yaml index 6bf9fbe..59ced20 100644 --- a/.github/workflows/gofmt.yaml +++ b/.github/workflows/gofmt.yaml @@ -1,7 +1,12 @@ name: gofmt.yaml + on: pull_request: branches: [main] + +permissions: + contents: read + jobs: gofmt: uses: senzing-factory/build-resources/.github/workflows/gofmt.yaml@main diff --git a/.github/workflows/gosec.yaml b/.github/workflows/gosec.yaml index 42443d8..ee7679b 100644 --- a/.github/workflows/gosec.yaml +++ b/.github/workflows/gosec.yaml @@ -2,6 +2,7 @@ # - https://github.com/securego/gosec name: gosec.yaml + on: push: branches: @@ -9,6 +10,10 @@ on: pull_request: branches: - main + +permissions: + contents: read + jobs: gosec: runs-on: ubuntu-latest diff --git a/.github/workflows/make-go-github-file.yaml b/.github/workflows/make-go-github-file.yaml index 7ba655b..93e0674 100644 --- a/.github/workflows/make-go-github-file.yaml +++ b/.github/workflows/make-go-github-file.yaml @@ -1,9 +1,13 @@ name: make-go-github-file.yaml + on: push: tags: - "[0-9]+.[0-9]+.[0-9]+" -permissions: write-all + +permissions: + contents: write + jobs: make-go-github-file: uses: senzing-factory/build-resources/.github/workflows/make-go-github-file.yaml@main diff --git a/.github/workflows/make-go-tag.yaml b/.github/workflows/make-go-tag.yaml index ad7670f..fa51bae 100644 --- a/.github/workflows/make-go-tag.yaml +++ b/.github/workflows/make-go-tag.yaml @@ -1,9 +1,13 @@ name: make-go-tag.yaml + on: push: tags: - "[0-9]+.[0-9]+.[0-9]+" -permissions: write-all + +permissions: + contents: write + jobs: make-go-tag: name: Make a vM.m.P tag