Skip to content

Commit cf01ccb

Browse files
jkowalleckjkowalleck
authored
zizmor (#75)
Signed-off-by: Jan Kowalleck <jan.kowalleck@gmail.com>
1 parent 9515740 commit cf01ccb

2 files changed

Lines changed: 11 additions & 14 deletions

File tree

.github/workflows/ruby.yml

Lines changed: 3 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -2,9 +2,10 @@ name: Ruby
22

33
on:
44
push:
5-
branches: [ "master", "next" ]
5+
branches: [ "master", "main" ]
66
tags: [ "v*" ]
77
pull_request:
8+
branches: ['**']
89
workflow_dispatch:
910
schedule:
1011
# schedule dayly tests, since dependencies are not intended to be locked
@@ -82,7 +83,7 @@ jobs:
8283
## see https://docs.github.com/en/actions/using-workflows/workflow-syntax-for-github-actions#example-using-secrets
8384
if: ${{ env.CODACY_PROJECT_TOKEN != '' }}
8485
# see https://github.com/codacy/codacy-coverage-reporter-action
85-
uses: codacy/codacy-coverage-reporter-action@89d6c85cfafaec52c72b6c5e8b2878d33104c699 # v1
86+
uses: codacy/codacy-coverage-reporter-action@89d6c85cfafaec52c72b6c5e8b2878d33104c699 # v1.3.0
8687
with:
8788
project-token: ${{ env.CODACY_PROJECT_TOKEN }}
8889
coverage-reports: '${{ env.TESTS_COVERAGE_ARTIFACT }}_*/coverage.xml'

.github/workflows/zizmor.yml

Lines changed: 8 additions & 12 deletions
Original file line numberDiff line numberDiff line change
@@ -1,35 +1,31 @@
11
name: Zizmor
22

33
on:
4-
pull_request:
5-
paths:
6-
- '.github/workflows/**'
7-
- '.github/dependabot.yml'
84
push:
9-
paths:
10-
- ".github/workflows/**"
11-
- ".github/dependabot.yml"
5+
branches: ['master', 'main']
6+
pull_request:
7+
branches: ['**']
8+
workflow_dispatch:
129
schedule:
13-
# weekly scan: every Saturday at 00:00 UTC
1410
- cron: '0 0 * * 6'
1511

12+
permissions: {}
13+
1614
concurrency:
1715
group: '${{ github.workflow }}-${{ github.ref }}'
1816
cancel-in-progress: true
1917

20-
permissions: {}
21-
2218
jobs:
2319
zizmor:
24-
name: Harden GitHub Workflows (zizmor)
20+
name: Zizmor
2521
runs-on: ubuntu-latest
2622
timeout-minutes: 10
2723
permissions:
2824
contents: read
2925
steps:
3026
- name: Checkout
3127
# see https://github.com/actions/checkout
32-
uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6
28+
uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
3329
with:
3430
persist-credentials: false
3531
- name: Run zizmor 🌈

0 commit comments

Comments
 (0)