Skip to content

Update workflow permissions for enhanced clarity and functionality #796

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
Payback159 merged 5 commits into from
Sep 16, 2025
Merged

Update workflow permissions for enhanced clarity and functionality #796

Payback159 merged 5 commits into from
Sep 16, 2025

Conversation

@Payback159
Copy link
Collaborator

@Payback159 Payback159 commented Sep 16, 2025

No description provided.

@github-actions github-actions bot added the github_actions Pull requests that update GitHub Actions code label Sep 16, 2025
@Payback159
fix(workflows): address security vulnerabilities from linting
8d1e2cb 
- Fix dangerous pull_request_target trigger
- Add persist-credentials: false to checkout steps
- Prevent template injection with environment variables
- Disable cache to prevent poisoning attacks
@Payback159
fix(workflows): update pull request event types for labeler workflow
fa62823
@Payback159
fix(workflows): wrap LATEST_RELEASE in quotes for proper YAML formatting
e418a15
@Payback159
fix(workflows): ensure proper variable expansion for latest release i…
40c63bc 
…n output
@Payback159 Payback159 merged commit 1cf5856 into main Sep 16, 2025
13 checks passed
@Payback159 Payback159 deleted the enhance-workflow-security branch September 16, 2025 20:38
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

github_actions Pull requests that update GitHub Actions code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@Payback159