From 4efc37d98f319cd35ee92912110183cb47da27af Mon Sep 17 00:00:00 2001 From: "Yury V. Zaytsev" Date: Fri, 28 Feb 2025 17:59:26 +0100 Subject: [PATCH] maint: specify permissions and timeouts for all workflows Signed-off-by: Yury V. Zaytsev --- .github/workflows/ci-alpine.yml | 6 +++++- .github/workflows/ci-fedora.yml | 6 +++++- .github/workflows/ci-freebsd.yml | 3 +++ .github/workflows/ci-macos.yml | 3 +++ .github/workflows/ci-solaris.yml | 3 +++ .github/workflows/ci-ubuntu.yml | 3 +++ .github/workflows/transifex.yml | 6 ++++-- .github/workflows/update-sources.yml | 5 +++++ 8 files changed, 31 insertions(+), 4 deletions(-) diff --git a/.github/workflows/ci-alpine.yml b/.github/workflows/ci-alpine.yml index 62aed5a0a..7823cfcad 100644 --- a/.github/workflows/ci-alpine.yml +++ b/.github/workflows/ci-alpine.yml @@ -6,9 +6,13 @@ on: jobs: build-alpine: runs-on: ubuntu-latest + timeout-minutes: 5 + container: image: alpine:latest - timeout-minutes: 5 + + permissions: + contents: read steps: - uses: actions/checkout@v4 diff --git a/.github/workflows/ci-fedora.yml b/.github/workflows/ci-fedora.yml index a5f9c9764..5680051b9 100644 --- a/.github/workflows/ci-fedora.yml +++ b/.github/workflows/ci-fedora.yml @@ -6,9 +6,13 @@ on: jobs: build-fedora: runs-on: ubuntu-latest + timeout-minutes: 5 + container: image: fedora:latest - timeout-minutes: 5 + + permissions: + contents: read steps: - name: Install git inside container diff --git a/.github/workflows/ci-freebsd.yml b/.github/workflows/ci-freebsd.yml index 821345ee0..02bb05707 100644 --- a/.github/workflows/ci-freebsd.yml +++ b/.github/workflows/ci-freebsd.yml @@ -14,6 +14,9 @@ jobs: runs-on: ubuntu-latest timeout-minutes: 15 + permissions: + contents: read + steps: - uses: actions/checkout@v4 diff --git a/.github/workflows/ci-macos.yml b/.github/workflows/ci-macos.yml index b9ff1b124..5c004961a 100644 --- a/.github/workflows/ci-macos.yml +++ b/.github/workflows/ci-macos.yml @@ -14,6 +14,9 @@ jobs: runs-on: macos-latest timeout-minutes: 5 + permissions: + contents: read + steps: - uses: actions/checkout@v4 diff --git a/.github/workflows/ci-solaris.yml b/.github/workflows/ci-solaris.yml index fc978b32a..a49bf30ae 100644 --- a/.github/workflows/ci-solaris.yml +++ b/.github/workflows/ci-solaris.yml @@ -8,6 +8,9 @@ jobs: runs-on: ubuntu-latest timeout-minutes: 15 + permissions: + contents: read + steps: - uses: actions/checkout@v4 diff --git a/.github/workflows/ci-ubuntu.yml b/.github/workflows/ci-ubuntu.yml index c34f62472..da4df5046 100644 --- a/.github/workflows/ci-ubuntu.yml +++ b/.github/workflows/ci-ubuntu.yml @@ -8,6 +8,9 @@ jobs: runs-on: ubuntu-latest timeout-minutes: 10 + permissions: + contents: read + steps: - uses: actions/checkout@v4 diff --git a/.github/workflows/transifex.yml b/.github/workflows/transifex.yml index f993d589f..6441b6c7a 100644 --- a/.github/workflows/transifex.yml +++ b/.github/workflows/transifex.yml @@ -10,9 +10,11 @@ concurrency: jobs: transifex-upload: - runs-on: ubuntu-latest - timeout-minutes: 15 + timeout-minutes: 5 + + permissions: + contents: read steps: - uses: actions/checkout@v4 diff --git a/.github/workflows/update-sources.yml b/.github/workflows/update-sources.yml index af0cb4745..9c73b412a 100644 --- a/.github/workflows/update-sources.yml +++ b/.github/workflows/update-sources.yml @@ -11,6 +11,11 @@ concurrency: jobs: update-sources: runs-on: ubuntu-latest + timeout-minutes: 5 + + permissions: + contents: read + steps: - uses: actions/checkout@v4