This is an automated email from the ASF dual-hosted git repository. hello-stephen pushed a commit to branch fix/license-eyes-branch-4.0 in repository https://gitbox.apache.org/repos/asf/doris.git
commit 273c49066b088ad35e7010a1b72a4626385f239d Author: lidongyang <[email protected]> AuthorDate: Thu May 21 20:15:48 2026 +0800 [fix](ci) add persist-credentials: false in license-eyes pull_request_target checkout Prevents the GITHUB_TOKEN from being available to fork-supplied code during the license check workflow. Co-Authored-By: Claude Sonnet 4.6 <[email protected]> --- .github/workflows/license-eyes.yml | 1 + 1 file changed, 1 insertion(+) diff --git a/.github/workflows/license-eyes.yml b/.github/workflows/license-eyes.yml index c17081fc75b..ae90a0b0cfb 100644 --- a/.github/workflows/license-eyes.yml +++ b/.github/workflows/license-eyes.yml @@ -47,6 +47,7 @@ jobs: uses: actions/checkout@v3 with: ref: ${{ github.event.pull_request.head.sha }} + persist-credentials: false - name: Check License uses: apache/[email protected] --------------------------------------------------------------------- To unsubscribe, e-mail: [email protected] For additional commands, e-mail: [email protected]
