From 7d6e75e1d874deabb10e17ff4d4c7f3c4e2dc0d8 Mon Sep 17 00:00:00 2001 From: Nick Alteen Date: Mon, 27 Nov 2023 23:52:28 -0500 Subject: [PATCH 1/3] Group dependencies --- .github/dependabot.yml | 20 +++++++++++++++----- 1 file changed, 15 insertions(+), 5 deletions(-) diff --git a/.github/dependabot.yml b/.github/dependabot.yml index 84da8d0..9d98c2a 100644 --- a/.github/dependabot.yml +++ b/.github/dependabot.yml @@ -1,11 +1,21 @@ version: 2 updates: - - package-ecosystem: github-actions - directory: / - schedule: - interval: weekly - - package-ecosystem: docker directory: / schedule: interval: weekly + groups: + docker-minor: + update-types: + - minor + - patch + + - package-ecosystem: github-actions + directory: / + schedule: + interval: weekly + groups: + actions-minor: + update-types: + - minor + - patch From 8b2413dfed039233d0ef0f0efe72ee687e00b198 Mon Sep 17 00:00:00 2001 From: Nick Alteen Date: Mon, 27 Nov 2023 23:52:38 -0500 Subject: [PATCH 2/3] Update permissions scope --- .github/workflows/ci.yml | 7 ++++--- .github/workflows/linter.yml | 17 +++++++---------- 2 files changed, 11 insertions(+), 13 deletions(-) diff --git a/.github/workflows/ci.yml b/.github/workflows/ci.yml index f5e03a6..086d520 100644 --- a/.github/workflows/ci.yml +++ b/.github/workflows/ci.yml @@ -2,11 +2,12 @@ name: Continuous Integration on: pull_request: + push: branches: - main - push: - branches-ignore: - - main + +permissions: + contents: read jobs: test-docker: diff --git a/.github/workflows/linter.yml b/.github/workflows/linter.yml index 6a46ad7..c8e41dd 100644 --- a/.github/workflows/linter.yml +++ b/.github/workflows/linter.yml @@ -1,31 +1,28 @@ -name: Lint Code Base +name: Lint Codebase on: pull_request: - branches: - - main push: branches: - main +permissions: + contents: read + jobs: lint: - name: Lint Code Base + name: Lint Codebase runs-on: ubuntu-latest - permissions: - contents: read - packages: read - statuses: write - steps: - name: Checkout id: checkout uses: actions/checkout@v4 - - name: Lint Code Base + - name: Lint Codebase id: super-linter uses: super-linter/super-linter/slim@v5 env: DEFAULT_BRANCH: main GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }} + VALIDATE_ALL_CODEBASE: true From 6e7b362362898ba97f432b0e04173d0458edbae1 Mon Sep 17 00:00:00 2001 From: Nick Alteen Date: Fri, 1 Dec 2023 09:09:41 -0500 Subject: [PATCH 3/3] Add missing perms --- .github/workflows/linter.yml | 2 ++ 1 file changed, 2 insertions(+) diff --git a/.github/workflows/linter.yml b/.github/workflows/linter.yml index c8e41dd..6eec65e 100644 --- a/.github/workflows/linter.yml +++ b/.github/workflows/linter.yml @@ -8,6 +8,8 @@ on: permissions: contents: read + packages: read + statuses: write jobs: lint: