Add vulnerability-alerts permission to workflow schema
Add vulnerability-alerts as a new read-only permission key in the permissions-mapping. This permission allows workflows to read Dependabot alerts via GITHUB_TOKEN. Uses permission-level-read-or-no-access type (read and none only). Updated security-events description to reflect it covers code scanning alerts only.
This commit is contained in:
committed by
GitHub
parent
a810405967
commit
38f730cdce
@@ -1644,11 +1644,15 @@
|
||||
},
|
||||
"security-events": {
|
||||
"type": "permission-level-any",
|
||||
"description": "Code scanning and Dependabot alerts."
|
||||
"description": "Code scanning alerts."
|
||||
},
|
||||
"statuses": {
|
||||
"type": "permission-level-any",
|
||||
"description": "Commit statuses."
|
||||
},
|
||||
"vulnerability-alerts": {
|
||||
"type": "permission-level-read-or-no-access",
|
||||
"description": "Dependabot alerts."
|
||||
}
|
||||
}
|
||||
}
|
||||
|
||||
Reference in New Issue
Block a user