From 59717817a0036d4f619b6e5de0f896a584c9b9c2 Mon Sep 17 00:00:00 2001 From: Adam Ralph Date: Wed, 31 Jan 2024 19:29:02 +0100 Subject: [PATCH] upgrade super-linter from 5.0.0 to 6.3.0 --- .github/workflows/ci.yml | 1 + .github/workflows/codeql-analysis.yml | 2 ++ .github/workflows/infer-sharp.yml | 1 + .github/workflows/lint.yml | 11 ++++++++++- .github/workflows/release.yml | 1 + .github/workflows/spell-check.yml | 1 + 6 files changed, 16 insertions(+), 1 deletion(-) diff --git a/.github/workflows/ci.yml b/.github/workflows/ci.yml index 3d86767..f95b56a 100644 --- a/.github/workflows/ci.yml +++ b/.github/workflows/ci.yml @@ -3,6 +3,7 @@ on: push: branches: [main, release-*] pull_request: +permissions: read-all env: DOTNET_NOLOGO: true DOTNET_SKIP_FIRST_TIME_EXPERIENCE: true diff --git a/.github/workflows/codeql-analysis.yml b/.github/workflows/codeql-analysis.yml index 04098fd..cfbc489 100644 --- a/.github/workflows/codeql-analysis.yml +++ b/.github/workflows/codeql-analysis.yml @@ -20,6 +20,8 @@ on: schedule: - cron: '43 4 * * 0' +permissions: read-all + jobs: analyze: name: Analyze diff --git a/.github/workflows/infer-sharp.yml b/.github/workflows/infer-sharp.yml index 45d4fbb..10bc931 100644 --- a/.github/workflows/infer-sharp.yml +++ b/.github/workflows/infer-sharp.yml @@ -3,6 +3,7 @@ on: push: branches: [main, release-*] pull_request: +permissions: read-all jobs: infer-sharp: runs-on: ubuntu-latest diff --git a/.github/workflows/lint.yml b/.github/workflows/lint.yml index 3d6f3be..9bdef21 100644 --- a/.github/workflows/lint.yml +++ b/.github/workflows/lint.yml @@ -3,13 +3,22 @@ on: push: branches: [main, release-*] pull_request: +permissions: read-all jobs: lint: runs-on: ubuntu-latest + permissions: + contents: read + packages: read + statuses: write steps: - uses: actions/checkout@v4.1.1 - - uses: github/super-linter@v5.0.0 + with: + fetch-depth: 0 + filter: tree:0 + - uses: super-linter/super-linter@v6.3.0 env: + DEFAULT_BRANCH: main FILTER_REGEX_EXCLUDE: \bcodeql-analysis\.yml$|\bLICENSE$ GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }} VALIDATE_SHELL_SHFMT: false diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml index a2ec2b7..908dc71 100644 --- a/.github/workflows/release.yml +++ b/.github/workflows/release.yml @@ -2,6 +2,7 @@ name: release on: push: tags: ["*.*.*"] +permissions: read-all env: DOTNET_NOLOGO: true DOTNET_SKIP_FIRST_TIME_EXPERIENCE: true diff --git a/.github/workflows/spell-check.yml b/.github/workflows/spell-check.yml index 466b6d2..782c188 100644 --- a/.github/workflows/spell-check.yml +++ b/.github/workflows/spell-check.yml @@ -3,6 +3,7 @@ on: push: branches: [main, release-*] pull_request: +permissions: read-all jobs: spell-check: runs-on: ubuntu-latest