From 1f841d937e482da7e832073d8e29844b214abb92 Mon Sep 17 00:00:00 2001 From: Nick Alteen Date: Mon, 27 Nov 2023 23:47:11 -0500 Subject: [PATCH 1/3] Group dependencies --- .github/dependabot.yml | 20 +++++++++++++++----- 1 file changed, 15 insertions(+), 5 deletions(-) diff --git a/.github/dependabot.yml b/.github/dependabot.yml index 84da8d0..9d98c2a 100644 --- a/.github/dependabot.yml +++ b/.github/dependabot.yml @@ -1,11 +1,21 @@ version: 2 updates: - - package-ecosystem: github-actions - directory: / - schedule: - interval: weekly - - package-ecosystem: docker directory: / schedule: interval: weekly + groups: + docker-minor: + update-types: + - minor + - patch + + - package-ecosystem: github-actions + directory: / + schedule: + interval: weekly + groups: + actions-minor: + update-types: + - minor + - patch From 53f6fe95ed856f45a802f764db4fdf6824bc2d63 Mon Sep 17 00:00:00 2001 From: Nick Alteen Date: Mon, 27 Nov 2023 23:47:29 -0500 Subject: [PATCH 2/3] Remove extra permissions --- .github/workflows/ci.yml | 5 +++-- .github/workflows/linter.yml | 17 +++++++---------- 2 files changed, 10 insertions(+), 12 deletions(-) diff --git a/.github/workflows/ci.yml b/.github/workflows/ci.yml index 8bd9d43..235502b 100644 --- a/.github/workflows/ci.yml +++ b/.github/workflows/ci.yml @@ -2,12 +2,13 @@ name: Continuous Integration on: pull_request: - branches: - - main push: branches: - main +permissions: + contents: read + jobs: test-docker: name: Docker Tests diff --git a/.github/workflows/linter.yml b/.github/workflows/linter.yml index 6a46ad7..c8e41dd 100644 --- a/.github/workflows/linter.yml +++ b/.github/workflows/linter.yml @@ -1,31 +1,28 @@ -name: Lint Code Base +name: Lint Codebase on: pull_request: - branches: - - main push: branches: - main +permissions: + contents: read + jobs: lint: - name: Lint Code Base + name: Lint Codebase runs-on: ubuntu-latest - permissions: - contents: read - packages: read - statuses: write - steps: - name: Checkout id: checkout uses: actions/checkout@v4 - - name: Lint Code Base + - name: Lint Codebase id: super-linter uses: super-linter/super-linter/slim@v5 env: DEFAULT_BRANCH: main GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }} + VALIDATE_ALL_CODEBASE: true From 11f06196b496e4937b728d284f7ebf070214c8b1 Mon Sep 17 00:00:00 2001 From: Nick Alteen Date: Fri, 1 Dec 2023 09:07:36 -0500 Subject: [PATCH 3/3] Add missing perms --- .github/workflows/linter.yml | 2 ++ 1 file changed, 2 insertions(+) diff --git a/.github/workflows/linter.yml b/.github/workflows/linter.yml index c8e41dd..6eec65e 100644 --- a/.github/workflows/linter.yml +++ b/.github/workflows/linter.yml @@ -8,6 +8,8 @@ on: permissions: contents: read + packages: read + statuses: write jobs: lint: