fix: 解决提交pr也触发cloudflare推送,但没有Token触发失败的问题!#445
Conversation
|
Codex usage limits have been reached for code reviews. Please check with the admins of this repo to increase the limits by adding credits. |
![fennoai[bot]](https://avatars.githubusercontent.com/in/1924301?s=60&v=4){kind=small}
| with: | ||
| apiToken: ${{ secrets.CLOUDFLARE_API_TOKEN }} | ||
| accountId: ${{ secrets.CLOUDFLARE_ACCOUNT_ID }} | ||
| projectName: 'neocode-docs' |
There was a problem hiding this comment.
workflow_run jobs run in the default-branch context. Without an explicit branch input here, this deployment can be attributed to the wrong branch (potentially main) instead of the PR branch, which risks promoting PR artifacts as production deployments. Please set branch explicitly (for example from github.event.workflow_run.head_branch) and keep preview deployments isolated from production branch semantics.
| types: | ||
| - completed | ||
|
|
||
| jobs: |
There was a problem hiding this comment.
This job uses repository secrets but does not declare explicit permissions. Relying on repository defaults can grant broader GITHUB_TOKEN scope than needed. Add least-privilege permissions (for example actions: read, contents: read, and only additional scopes strictly required by the deploy step).
Codecov Report✅ All modified and coverable lines are covered by tests. 📢 Thoughts on this report? Let us know! |
1 participant
No description provided.