From da331fd169b19e33a56d86a031d592377e6388a6 Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Adam=20W=C3=B3jcik?= <58668583+Adam-it@users.noreply.github.com> Date: Sun, 3 Nov 2024 21:24:46 +0100 Subject: [PATCH] Adds permissions advisor --- .github/workflows/permission-advisor.yml | 27 ++++++++++++++++++++++++ .github/workflows/release-local.yml | 2 -- .github/workflows/update-samples.yml | 2 -- 3 files changed, 27 insertions(+), 4 deletions(-) create mode 100644 .github/workflows/permission-advisor.yml diff --git a/.github/workflows/permission-advisor.yml b/.github/workflows/permission-advisor.yml new file mode 100644 index 0000000..2c777b3 --- /dev/null +++ b/.github/workflows/permission-advisor.yml @@ -0,0 +1,27 @@ +# Sample workflow to run the action +name: Permissions Advisor + +permissions: + actions: read + +on: + workflow_dispatch: + inputs: + name: + description: 'The name of the workflow file to analyze' + required: true + type: string + count: + description: 'How many last runs to analyze' + required: false + type: string + default: "10" + +jobs: + advisor: + runs-on: ubuntu-latest + steps: + - uses: GitHubSecurityLab/actions-permissions/advisor@v1 + with: + name: ${{ inputs.name }} + count: ${{ fromJSON(inputs.count) }} \ No newline at end of file diff --git a/.github/workflows/release-local.yml b/.github/workflows/release-local.yml index 1781157..d73e52a 100644 --- a/.github/workflows/release-local.yml +++ b/.github/workflows/release-local.yml @@ -9,8 +9,6 @@ jobs: runs-on: ubuntu-latest steps: - - uses: GitHubSecurityLab/actions-permissions/monitor@v1 - - name: Setup node uses: actions/setup-node@v4 with: diff --git a/.github/workflows/update-samples.yml b/.github/workflows/update-samples.yml index 5f115ce..77daf92 100644 --- a/.github/workflows/update-samples.yml +++ b/.github/workflows/update-samples.yml @@ -11,8 +11,6 @@ jobs: runs-on: windows-latest steps: - - uses: GitHubSecurityLab/actions-permissions/monitor@v1 - - name: Checkout vscode-viva uses: actions/checkout@v4