From b87d040c0691b5cfc9ec79c2a7ca6d36b4f121a3 Mon Sep 17 00:00:00 2001 From: Facundo Tuesca Date: Tue, 10 Dec 2024 13:30:05 +0100 Subject: [PATCH] workflows: don't persist credentials on checkout Signed-off-by: Facundo Tuesca --- {{cookiecutter.project_slug}}/.github/workflows/docs.yml | 2 ++ {{cookiecutter.project_slug}}/.github/workflows/lint.yml | 2 ++ {{cookiecutter.project_slug}}/.github/workflows/tests.yml | 2 ++ 3 files changed, 6 insertions(+) diff --git a/{{cookiecutter.project_slug}}/.github/workflows/docs.yml b/{{cookiecutter.project_slug}}/.github/workflows/docs.yml index ca6c622..ff171a0 100644 --- a/{{cookiecutter.project_slug}}/.github/workflows/docs.yml +++ b/{{cookiecutter.project_slug}}/.github/workflows/docs.yml @@ -10,6 +10,8 @@ jobs: runs-on: ubuntu-latest steps: - uses: actions/checkout@v4 + with: + persist-credentials: false - name: Install uv uses: astral-sh/setup-uv@v3 diff --git a/{{cookiecutter.project_slug}}/.github/workflows/lint.yml b/{{cookiecutter.project_slug}}/.github/workflows/lint.yml index 7cc33c3..43e70e3 100644 --- a/{{cookiecutter.project_slug}}/.github/workflows/lint.yml +++ b/{{cookiecutter.project_slug}}/.github/workflows/lint.yml @@ -11,6 +11,8 @@ jobs: runs-on: ubuntu-latest steps: - uses: actions/checkout@v4 + with: + persist-credentials: false - name: Install uv uses: astral-sh/setup-uv@v3 diff --git a/{{cookiecutter.project_slug}}/.github/workflows/tests.yml b/{{cookiecutter.project_slug}}/.github/workflows/tests.yml index 0bf01c6..8d87c68 100644 --- a/{{cookiecutter.project_slug}}/.github/workflows/tests.yml +++ b/{{cookiecutter.project_slug}}/.github/workflows/tests.yml @@ -18,6 +18,8 @@ jobs: runs-on: ubuntu-latest steps: - uses: actions/checkout@v4 + with: + persist-credentials: false - name: Install uv uses: astral-sh/setup-uv@v3