pr

ci: restrict workflow permissions #54

Sign in to view logs

Triggered via pull request February 5, 2024 14:22

xopham

opened #36

ci/restrict-workflow-permissions

Status Startup failure

Total duration –

Artifacts –

pr.yml

on: pull_request

ci / conditionals

ci / ... / context

ci / ... / check-commit-message

ci / ... / dependency review

ci / ... / ossf-scorecard

ci / ... / docs

ci / ... / bandit

ci / ... / black

ci / ... / checkov

ci / ... / codeql

ci / ... / hadolint

ci / ... / kubelinter

ci / ... / pylint

ci / ... / semgrep

ci / ... / trivy config

ci / ... / unit tests

ci / ... / build

ci / ... / grype

ci / ... / dependency review

ci / ... / trivy image

Matrix: ci / integration-test / functional

Waiting for pending jobs

Matrix: ci / integration-test / k8s versions

Waiting for pending jobs

Matrix: ci / integration-test / optional

Waiting for pending jobs

Matrix: ci / integration-test / optional k8s versions

Waiting for pending jobs

Annotations

1 error

Invalid workflow file: .github/workflows/pr.yml#L105

The workflow is not valid. sse-secure-systems/semgr8s/.github/workflows/.reusable-ci.yml@1dcf82c6c40625edb84f2480732178231ea3c591 (Line: 105, Col: 3): Error calling workflow 'sse-secure-systems/semgr8s/.github/workflows/.reusable-compliance.yml@1dcf82c6c40625edb84f2480732178231ea3c591'. The nested job 'dependency-review' is requesting 'pull-requests: write', but is only allowed 'pull-requests: read'.