Skip to content

Commit

Permalink
[StepSecurity] ci: Harden GitHub Actions
Browse files Browse the repository at this point in the history 
Signed-off-by: StepSecurity Bot <[email protected]>
  • Loading branch information
@step-security-bot @hsbt
step-security-bot authored and hsbt committed Nov 29, 2022
1 parent 90d3333 commit fadc712
Showing 1 changed file with 5 additions and 2 deletions.
7 changes: 5 additions & 2 deletions .github/workflows/test.yml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -2,6 +2,9 @@ name: Test

on: [push, pull_request]

permissions: # added using https://github.com/step-security/secure-workflows
contents: read

jobs:
build:
strategy:
Expand All @@ -15,9 +18,9 @@ jobs:
- { ruby: 'jruby-head', os: 'ubuntu-latest' }
runs-on: ${{ matrix.os }}
steps:
- uses: actions/checkout@v3
- uses: actions/checkout@93ea575cb5d8a053eaa0ac8fa3b40d7e05a33cc8 # v3.1.0
- name: Set up Ruby
uses: ruby/setup-ruby@v1
uses: ruby/setup-ruby@c7079efafd956afb5d823e8999c2506e1053aefa # v1.126.0
with:
ruby-version: ${{ matrix.ruby }}
bundler-cache: true # 'bundle install' and cache
Expand Down

0 comments on commit fadc712

Please sign in to comment.