From f94670cad72c08e69f412906cc8def3371a49da6 Mon Sep 17 00:00:00 2001 From: Jens L Date: Fri, 3 Nov 2023 13:16:15 +0100 Subject: [PATCH] ci: explicitly give write permissions to packages (#7428) * ci: explicitly give write permissions to packages Signed-off-by: Jens Langhammer * run full CI on cherry-picks Signed-off-by: Jens Langhammer --------- Signed-off-by: Jens Langhammer --- .github/workflows/ci-main.yml | 5 +++++ .github/workflows/ci-outpost.yml | 3 +++ .github/workflows/ci-web.yml | 1 + .github/workflows/ci-website.yml | 1 + .github/workflows/release-publish.yml | 4 ++++ 5 files changed, 14 insertions(+) diff --git a/.github/workflows/ci-main.yml b/.github/workflows/ci-main.yml index 097321888..311b8324c 100644 --- a/.github/workflows/ci-main.yml +++ b/.github/workflows/ci-main.yml @@ -11,6 +11,7 @@ on: pull_request: branches: - main + - version-* env: POSTGRES_DB: authentik @@ -185,6 +186,8 @@ jobs: build: needs: ci-core-mark runs-on: ubuntu-latest + permissions: + packages: write timeout-minutes: 120 steps: - uses: actions/checkout@v4 @@ -235,6 +238,8 @@ jobs: build-arm64: needs: ci-core-mark runs-on: ubuntu-latest + permissions: + packages: write timeout-minutes: 120 steps: - uses: actions/checkout@v4 diff --git a/.github/workflows/ci-outpost.yml b/.github/workflows/ci-outpost.yml index a3e80d396..4b286d07f 100644 --- a/.github/workflows/ci-outpost.yml +++ b/.github/workflows/ci-outpost.yml @@ -9,6 +9,7 @@ on: pull_request: branches: - main + - version-* jobs: lint-golint: @@ -65,6 +66,8 @@ jobs: - ldap - radius runs-on: ubuntu-latest + permissions: + packages: write steps: - uses: actions/checkout@v4 with: diff --git a/.github/workflows/ci-web.yml b/.github/workflows/ci-web.yml index e47e9b2df..fd1e36182 100644 --- a/.github/workflows/ci-web.yml +++ b/.github/workflows/ci-web.yml @@ -9,6 +9,7 @@ on: pull_request: branches: - main + - version-* jobs: lint-eslint: diff --git a/.github/workflows/ci-website.yml b/.github/workflows/ci-website.yml index 0b3376e01..2a52c7c2e 100644 --- a/.github/workflows/ci-website.yml +++ b/.github/workflows/ci-website.yml @@ -9,6 +9,7 @@ on: pull_request: branches: - main + - version-* jobs: lint-prettier: diff --git a/.github/workflows/release-publish.yml b/.github/workflows/release-publish.yml index e1a024786..9ba260281 100644 --- a/.github/workflows/release-publish.yml +++ b/.github/workflows/release-publish.yml @@ -7,6 +7,8 @@ on: jobs: build-server: runs-on: ubuntu-latest + permissions: + packages: write steps: - uses: actions/checkout@v4 - name: Set up QEMU @@ -52,6 +54,8 @@ jobs: VERSION_FAMILY=${{ steps.ev.outputs.versionFamily }} build-outpost: runs-on: ubuntu-latest + permissions: + packages: write strategy: fail-fast: false matrix: