This is an automated email from the ASF dual-hosted git repository.

erisu pushed a commit to branch master
in repository https://gitbox.apache.org/repos/asf/cordova-fetch.git


The following commit(s) were added to refs/heads/master by this push:
     new 3562925  ci: workflow updates (#137)
3562925 is described below

commit 356292574ca9f0d632d6574d1a31276fec68396b
Author: エリス <er...@users.noreply.github.com>
AuthorDate: Fri Aug 15 15:51:06 2025 +0900

    ci: workflow updates (#137)
    
    * ci: add missing permissions block
    * ci: updated actions/checkout@v5
---
 .github/workflows/ci.yml            | 6 +++++-
 .github/workflows/release-audit.yml | 2 +-
 2 files changed, 6 insertions(+), 2 deletions(-)

diff --git a/.github/workflows/ci.yml b/.github/workflows/ci.yml
index 3434357..124a8e2 100644
--- a/.github/workflows/ci.yml
+++ b/.github/workflows/ci.yml
@@ -25,6 +25,10 @@ on:
     branches:
       - '*'
 
+permissions:
+  contents: read
+  security-events: write
+
 jobs:
   test:
     name: NodeJS ${{ matrix.node-version }} on ${{ matrix.os }}
@@ -35,7 +39,7 @@ jobs:
         os: [ubuntu-latest, windows-latest, macos-latest]
 
     steps:
-      - uses: actions/checkout@v4
+      - uses: actions/checkout@v5
 
       - name: Use Node.js ${{ matrix.node-version }}
         uses: actions/setup-node@v4
diff --git a/.github/workflows/release-audit.yml 
b/.github/workflows/release-audit.yml
index 6d1c813..85e7313 100644
--- a/.github/workflows/release-audit.yml
+++ b/.github/workflows/release-audit.yml
@@ -34,7 +34,7 @@ jobs:
     runs-on: ubuntu-latest
     steps:
       # Checkout project
-      - uses: actions/checkout@v4
+      - uses: actions/checkout@v5
 
       # Check license headers (v1.2.0)
       - uses: erisu/apache-rat-action@3127a8c18f3bb10e91c60e835144085b31c5c463


---------------------------------------------------------------------
To unsubscribe, e-mail: commits-unsubscr...@cordova.apache.org
For additional commands, e-mail: commits-h...@cordova.apache.org

Reply via email to