From 41278026bb0b397462abe96bcbb75ffb3c674933 Mon Sep 17 00:00:00 2001 From: minmingzhu Date: Wed, 28 Feb 2024 03:12:47 +0000 Subject: [PATCH 1/2] fix OpenSSF --- .github/workflows/dev_cron.yml | 9 ++++++--- 1 file changed, 6 insertions(+), 3 deletions(-) diff --git a/.github/workflows/dev_cron.yml b/.github/workflows/dev_cron.yml index ab2840eb..e88e767e 100644 --- a/.github/workflows/dev_cron.yml +++ b/.github/workflows/dev_cron.yml @@ -25,19 +25,22 @@ on: - edited - synchronize +permissions: read-all + jobs: process: name: Process runs-on: ubuntu-latest steps: - - uses: actions/checkout@v2 + - uses: actions/checkout@ee0669bd1cc54295c223e0bb666b733df41de1c5 # v2.7.0 + - name: Comment Issues link if: | github.event_name == 'pull_request_target' && (github.event.action == 'opened' || github.event.action == 'edited') - uses: actions/github-script@v3 + uses: actions/github-script@ffc2c79a5b2490bd33e0a41c1de74b877714d736 # v3.2.0 with: github-token: ${{ secrets.GITHUB_TOKEN }} script: | @@ -49,7 +52,7 @@ jobs: github.event_name == 'pull_request_target' && (github.event.action == 'opened' || github.event.action == 'edited') - uses: actions/github-script@v3 + uses: actions/github-script@ffc2c79a5b2490bd33e0a41c1de74b877714d736 # v3.2.0 with: github-token: ${{ secrets.GITHUB_TOKEN }} script: | From 93f74637ca9e637f46f768abfc10e88ffeb264e1 Mon Sep 17 00:00:00 2001 From: minmingzhu <45281494+minmingzhu@users.noreply.github.com> Date: Wed, 28 Feb 2024 11:22:00 +0800 Subject: [PATCH 2/2] Update dev_cron.yml --- .github/workflows/dev_cron.yml | 1 - 1 file changed, 1 deletion(-) diff --git a/.github/workflows/dev_cron.yml b/.github/workflows/dev_cron.yml index e88e767e..e66d4f42 100644 --- a/.github/workflows/dev_cron.yml +++ b/.github/workflows/dev_cron.yml @@ -34,7 +34,6 @@ jobs: steps: - uses: actions/checkout@ee0669bd1cc54295c223e0bb666b733df41de1c5 # v2.7.0 - - name: Comment Issues link if: | github.event_name == 'pull_request_target' &&