mirror of
https://github.com/TryGhost/Ghost.git
synced 2024-12-25 03:44:29 +03:00
6de598dec9
refs https://github.com/TryGhost/Toolbox/issues/381 - when using `pull_request`, the workflow doesn't have permissions to write to the PR in question - there is another trigger - `pull_request_target` - but this comes with a heap of security warnings - our use of it should be OK because we're only checking out our own Action and not code from the PR - this commit also adds permissions to specify we only want write access to issues and PRs |
||
---|---|---|
.. | ||
auto-assign.yml | ||
browser-tests.yml | ||
canary.yml | ||
create-release-branch.yml | ||
custom-build.yml | ||
label-actions.yml | ||
migration-review.yml | ||
release.yml | ||
stale.yml | ||
test.yml |