From 2bb689b813504c52abd7a9c8773e014fc1d43ff7 Mon Sep 17 00:00:00 2001
From: n0vad3v <n0vad3v@riseup.net>
Date: Fri, 24 Nov 2023 12:30:45 +0800
Subject: [PATCH 1/3] Fix link in README.md and fix CI permission

---
 .github/workflows/CI.yaml | 2 ++
 README.md                 | 2 +-
 2 files changed, 3 insertions(+), 1 deletion(-)

diff --git a/.github/workflows/CI.yaml b/.github/workflows/CI.yaml
index 2db233abe..6dcc4dc12 100644
--- a/.github/workflows/CI.yaml
+++ b/.github/workflows/CI.yaml
@@ -79,6 +79,8 @@ jobs:
 
       - name: Comment PR
         uses: thollander/actions-comment-pull-request@v2
+        permissions: 
+          pull-requests: write 
         with:
           message: |
             ```
diff --git a/README.md b/README.md
index 1f5cf812b..5eba22b6b 100644
--- a/README.md
+++ b/README.md
@@ -62,7 +62,7 @@ Now the server should be running on `127.0.0.1:3333`, visiting `http://127.0.0.1
 
 ## Custom config
 
-If you'd like to use a customized `config.json`, you can follow the steps in [Basic Usage](https://docs.webp.sh/usage/basic-usage/) to genereate one, and mount it into the container's `/etc/config.json`, example `docker-compose.yml` as follows:
+If you'd like to use a customized `config.json`, you can follow the steps in [Configuration](https://docs.webp.sh/usage/configuration/) to genereate one, and mount it into the container's `/etc/config.json`, example `docker-compose.yml` as follows:
 
 ```yml
 version: '3'

From 05ae5f55b13f6d5f033f71b312fa3481fefa901a Mon Sep 17 00:00:00 2001
From: n0vad3v <n0vad3v@riseup.net>
Date: Fri, 24 Nov 2023 13:08:41 +0800
Subject: [PATCH 2/3] Fix permissions

---
 .github/workflows/CI.yaml | 5 +++--
 1 file changed, 3 insertions(+), 2 deletions(-)

diff --git a/.github/workflows/CI.yaml b/.github/workflows/CI.yaml
index 6dcc4dc12..89550e44b 100644
--- a/.github/workflows/CI.yaml
+++ b/.github/workflows/CI.yaml
@@ -31,6 +31,8 @@ jobs:
   image-test:
     name: Check for image build and CVE
     runs-on: ubuntu-latest
+    permissions: 
+      pull-requests: write 
     steps:
       - name: Checkout
         uses: actions/checkout@v3
@@ -79,8 +81,7 @@ jobs:
 
       - name: Comment PR
         uses: thollander/actions-comment-pull-request@v2
-        permissions: 
-          pull-requests: write 
+
         with:
           message: |
             ```

From 1cc02cbebbaba1ac2cdabecc37793c43a4c7c8b7 Mon Sep 17 00:00:00 2001
From: n0vad3v <n0vad3v@riseup.net>
Date: Fri, 24 Nov 2023 14:28:07 +0800
Subject: [PATCH 3/3] Add tag to update instead of add

---
 .github/workflows/CI.yaml | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/.github/workflows/CI.yaml b/.github/workflows/CI.yaml
index 89550e44b..7909ee7cc 100644
--- a/.github/workflows/CI.yaml
+++ b/.github/workflows/CI.yaml
@@ -79,12 +79,12 @@ jobs:
         run: |
           echo "${{ steps.trivy.outputs.stdout }}"
 
-      - name: Comment PR
+      - name: Comment PR for CVE
         uses: thollander/actions-comment-pull-request@v2
-
         with:
           message: |
             ```
             ${{ steps.trivy.outputs.stdout }}
             ```
+          comment_tag: cve
           GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}