Skip to content

Commit

Permalink
GitHub Workflows security hardening (Seldaek#1763)
Browse files Browse the repository at this point in the history 
Signed-off-by: Alex <[email protected]>
  • Loading branch information
@sashashura
sashashura authored Feb 4, 2023
1 parent 8255feb commit 3b866c9
Show file tree
Hide file tree
Showing 3 changed files with 9 additions and 0 deletions.
3 changes: 3 additions & 0 deletions .github/workflows/continuous-integration.yml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -4,6 +4,9 @@ on:
- push
- pull_request

permissions:
contents: read # to fetch code (actions/checkout)

jobs:
tests:
name: "CI (PHP ${{ matrix.php-version }}, ${{ matrix.dependencies }} deps)"
Expand Down
3 changes: 3 additions & 0 deletions .github/workflows/lint.yml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -4,6 +4,9 @@ on:
push:
pull_request:

permissions:
contents: read # to fetch code (actions/checkout)

jobs:
tests:
name: "Lint"
Expand Down
3 changes: 3 additions & 0 deletions .github/workflows/phpstan.yml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -7,6 +7,9 @@ on:
env:
COMPOSER_FLAGS: "--ansi --no-interaction --no-progress --prefer-dist"

permissions:
contents: read # to fetch code (actions/checkout)

jobs:
tests:
name: "PHPStan"
Expand Down

0 comments on commit 3b866c9

Please sign in to comment.