diff options
| author | Syndamia <kamen@syndamia.com> | 2024-08-13 15:45:14 +0300 |
|---|---|---|
| committer | Syndamia <kamen@syndamia.com> | 2024-08-13 15:45:19 +0300 |
| commit | a17ba562e6bc3d84d2b1cc47c06cf46f61d8374b (patch) | |
| tree | c40850aabcb35fe7e5301d36fe561872a7605d26 /.github | |
| parent | 718d169c89b729621050bed8b7cd392f84e5215f (diff) | |
| download | pico-web-a17ba562e6bc3d84d2b1cc47c06cf46f61d8374b.tar pico-web-a17ba562e6bc3d84d2b1cc47c06cf46f61d8374b.tar.gz pico-web-a17ba562e6bc3d84d2b1cc47c06cf46f61d8374b.zip | |
fix(cd*): Replaced token with permissions
Diffstat (limited to '.github')
| -rw-r--r-- | .github/workflows/cd-dev.yml | 3 | ||||
| -rw-r--r-- | .github/workflows/cd.yml | 3 |
2 files changed, 4 insertions, 2 deletions
diff --git a/.github/workflows/cd-dev.yml b/.github/workflows/cd-dev.yml index f7377ea..f0063e9 100644 --- a/.github/workflows/cd-dev.yml +++ b/.github/workflows/cd-dev.yml @@ -33,6 +33,8 @@ jobs: name: Scan development docker container with trivy runs-on: ubuntu-latest needs: Create-and-release-dev-container + permissions: + security-events: write steps: - name: Run Trivy vulnerability scanner uses: aquasecurity/trivy-action@master @@ -49,4 +51,3 @@ jobs: sarif_file: 'trivy-results.sarif' sha: ${{ github.sha }} ref: ${{ github.ref }} - token: ${{ secrets.TOKEN_GITHUB }} diff --git a/.github/workflows/cd.yml b/.github/workflows/cd.yml index 5b981c1..103717d 100644 --- a/.github/workflows/cd.yml +++ b/.github/workflows/cd.yml @@ -26,6 +26,8 @@ jobs: name: Scan production docker container with trivy runs-on: ubuntu-latest needs: Build-docker-and-push + permissions: + security-events: write steps: - name: Run Trivy vulnerability scanner uses: aquasecurity/trivy-action@master @@ -42,7 +44,6 @@ jobs: sarif_file: 'trivy-results.sarif' sha: ${{ github.sha }} ref: ${{ github.ref }} - token: ${{ secrets.TOKEN_GITHUB }} Release: name: Make github release |