letro/letro-ios
1
0
Fork 0
Code Issues Pull Requests Actions 5 Packages Projects Releases 2 Wiki Activity

Add zizmor checks on CI. (#5161)

Browse Source 
* Add zizmor checks on CI.

* Fix zizmor credentials warnings

* Add persist-credentials: false to action-cached-lfs-checkout too.

* Add empty permissions by default.

* Ignore pull_request_target failure and add a warning.
This commit is contained in:
Doug
2026-03-05 13:54:51 +00:00
committed by GitHub
parent 5e41016d5e
commit b1b0966cae
15 changed files with 100 additions and 24 deletions
Download Patch File Download Diff File Expand all files Collapse all files

7
.github/workflows/danger.yml vendored
View File

@@ -4,6 +4,8 @@ on:
pull_request:
types: [ labeled, synchronize, opened, reopened ]
permissions: {}
jobs:
build:
name: Danger
@@ -16,7 +18,10 @@ jobs:
cancel-in-progress: true
steps:
- uses: actions/checkout@v6
- uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
with:
persist-credentials: false
- name: Danger
uses: danger/swift@434d7c25f3b02d490a340b23f5e78dd15a5670bc # 3.22.1
env: