Update docs with permissions information
#166
Labels
documentation
Improvements or additions to documentation
GH Workflows
Issue/PR related to the callable workflows
priority/high
High priority issue/PR
Comments
CasperWA
added
documentation
|
This has been addressed somewhat for the new PyPI Trusted Publisher feature (see #267). However, here the permissions are set externally to the reusable workflows, since this feature currently does not work within a reusable workflow. |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Whenever
permissionsis used to alter or "ensure" the minimum required permissions forGITHUB_TOKEN, this should be mentioned and highlighted in the documentation.Since the called workflow might fail if the
permissionsis not also set accordingly in the caller workflow.There are in general 2 different approaches:
permissionsin the caller workflow (either at top-level or for the job that calls the called workflow).GITHUB_TOKENpermissions for the repository to the "permissive" scope.For the second option, the setting in question looks like this:
The text was updated successfully, but these errors were encountered: