Commit Graph

43 Commits

Author SHA1 Message Date
Varun Sharma ac64f9caf5 Secure workflows (#1) (#1072)
* Restrict permissions for the GITHUB_TOKEN in .github/workflows/label-feature.yml

* Restrict permissions for the GITHUB_TOKEN in .github/workflows/label-support.yml

* Restrict permissions for the GITHUB_TOKEN in .github/workflows/stale.yml

* Restrict permissions for the GITHUB_TOKEN in .github/workflows/sync_ghes.yaml

* Restrict permissions for the GITHUB_TOKEN in .github/workflows/validate-data.yaml

Co-authored-by: Step Security <bot@stepsecurity.io>

Co-authored-by: step-security[bot] <89328102+step-security[bot]@users.noreply.github.com>
Co-authored-by: Step Security <bot@stepsecurity.io>
2021-09-02 16:05:24 -04:00
Nick Fyson 9267d74ede add specific permissions to the labeler-triage workflow 2021-08-12 12:33:42 +01:00
Nick Fyson 443876fc44 add labeller workflow to triage code scanning PRs 2021-08-10 20:15:41 +01:00
Josh Gross 0dd0ee5676 Update stale cron schedule 2021-06-16 09:55:29 -04:00
Josh Gross 0c715d6fe2 Use $cron-daily for daily schedules (#923) 2021-06-03 15:07:11 -04:00
Michaël De Boey 0fd345a23c chore: update stale.yml 2021-04-30 02:40:37 +02:00
pastelmind d3f35ae32d Use actions/setup-node v2
Since actions/setup-node v2 has been declared stable since v2.1.4
(released on 2020-12-16), it should be safe to move everyone to v2.
2021-03-13 14:34:06 +09:00
Steve Winton ccc4742cb3 Require 40 character SHA of referenced actions
Co-authored-by: Andy McKay <andymckay@github.com>
2021-02-16 10:56:46 -06:00
Steve Winton 9786331c77 Remove languages in favor of categories 2021-02-16 10:53:36 -06:00
Steve Winton e0e30a0490 Add link to codeql.properties.json as example 2021-02-16 10:53:00 -06:00
Steve Winton f089b6db62 Add code scanning instructions for properties.json file 2021-02-11 18:08:32 -06:00
Steve Winton 23285c07c6 Add kebab-case example 2021-02-11 17:59:41 -06:00
Steve Winton 14be8c2b5a Ensure consistent line-endings 2021-02-11 17:55:44 -06:00
Steve Winton cdcc451ead Add separate sections based on workflow type 2021-02-11 17:54:56 -06:00
Steve Winton 0e973208b8 Add pre-requisites section 2021-02-11 17:51:56 -06:00
Steve Winton 06274ce330 Add comments around general guidance
So that they are only visible to the PR author
2021-02-11 17:51:56 -06:00
Steve Winton 950da01568 Add emphasis to acceptance criteria 2021-02-11 16:27:02 -06:00
Andy McKay bb39041a60 Create stale.yml 2020-11-24 13:52:32 -08:00
Nick Fyson 85739b01da update terms and guidelines to account for code scanning workflows 2020-11-11 09:30:58 +00:00
Andy McKay d7ac62140f Create label-feature.yml 2020-10-27 15:47:43 -07:00
Andy McKay fecbb32bb8 Rename label-close.yml to label-support.yml 2020-10-27 15:44:22 -07:00
Andy McKay e29f776785 updates to starter workflows 2020-08-20 18:09:12 -07:00
Andy McKay aa2ec78d14 rename to main 2020-07-15 16:21:25 -07:00
Christopher Schleiden 930a2cac2b Update PR template to refer to $default-branch 2020-07-14 12:57:43 -07:00
Andy McKay 54a75270fc Update pull_request_template.md 2020-05-25 13:10:00 -07:00
Andy McKay 0195d47eee Update pull_request_template.md 2020-05-25 13:09:29 -07:00
Andy McKay 861a79590c Rename main.yml to label-close.yml 2020-05-25 12:57:07 -07:00
Andy McKay 9d886e00f9 Create main.yml 2020-05-25 12:55:49 -07:00
Cameron Booth 249441a642 Update job name 2020-05-21 13:55:36 -07:00
Cameron Booth 9a0a11423d Name the workflow 2020-05-20 16:31:33 -07:00
Cameron Booth 74c1e87c6b Don’t fail if no changes 2020-05-20 16:31:20 -07:00
Cameron Booth a83abcc872 Script to validate the main parts of workflow data 2020-05-20 13:28:25 -07:00
Christopher Schleiden 70c22e93a3 Name GHES sync workflow 2020-05-20 11:39:30 -07:00
Christopher Schleiden 62f6872b4e Move ghes-sync into subfolder 2020-05-20 10:00:39 -07:00
Christopher Schleiden 5802cb7302 Add script and workflow to sync the set of starter-workflows for GHES 2020-05-15 16:49:20 -07:00
Edward Thomson 51163e4853 Update pull_request_template.md 2020-04-06 13:02:13 +01:00
Edward Thomson ccaa3fe168 Update pull_request_template.md
Formatting updates.
2020-04-03 15:20:55 +01:00
Edward Thomson 20088f9456 Update pull_request_template.md 2020-04-03 15:14:18 +01:00
Joshua Kelley a4dd230e64 Change relative link to fully qualified link. 2019-11-01 22:57:48 -04:00
Joshua Kelley 62b675a84c Fix broken link. CONTRIBUTING.md is not in the same directory as pull_request_template.md. 2019-10-11 12:22:25 -04:00
Andy McKay e53ea0147d rewrite the pull request template based on feedback 2019-10-02 08:26:13 -07:00
Andy McKay 039ac063c2 Update .github/pull_request_template.md
Co-Authored-By: Mike Coutermarsh <mscoutermarsh@github.com>
2019-10-01 13:57:34 -07:00
Andy McKay f2431fbcb0 add in guidelines for contributing 2019-10-01 13:36:41 -07:00