Naveen 12c55290a3 chore: Set permissions for GitHub actions (#8117) ...

Restrict the GitHub token permissions only to the required ones; this way, even if the attackers will succeed in compromising your workflow, they won’t be able to do much.

- Included permissions for the action. https://github.com/ossf/scorecard/blob/main/docs/checks.md#token-permissions

https://docs.github.com/en/actions/using-workflows/workflow-syntax-for-github-actions#permissions

https://docs.github.com/en/actions/using-jobs/assigning-permissions-to-jobs

[Keeping your GitHub Actions and workflows secure Part 1: Preventing pwn requests](https://securitylab.github.com/research/github-actions-preventing-pwn-requests/)

Signed-off-by: naveen <172697+naveensrinivasan@users.noreply.github.com>
(cherry picked from commit a8af28c994)

2022-07-02 23:59:24 +02:00

..

ISSUE_TEMPLATE

improve bug report template. Many people don't know what dbapi is

2021-09-28 20:15:15 +02:00

workflows

chore: Set permissions for GitHub actions (#8117)

2022-07-02 23:59:24 +02:00

CODE_OF_CONDUCT.md

Replace all http:// links to https://

2021-07-04 20:54:33 +02:00

CONTRIBUTING.md

Add code of conduct and contributing

2020-04-23 20:51:28 +02:00

FUNDING.yml

add sqlalchemy to FUNDING

2021-01-26 16:53:34 -05:00

pull_request_template.md

- all the checkboxes are just embarassing, just do something simple

2019-01-24 12:41:51 -05:00

SECURITY.md

Add code of conduct and contributing

2020-04-23 20:51:28 +02:00

stale.yml

try out the github stale hook.

2020-09-23 12:04:18 -04:00