This is an automated email from the ASF dual-hosted git repository. hello-stephen pushed a commit to branch fix/license-eyes-branch-3.1 in repository https://gitbox.apache.org/repos/asf/doris.git
commit 52f563d3c01f56dee7b7da662defc3ba107572fe Author: lidongyang <[email protected]> AuthorDate: Thu May 21 20:15:37 2026 +0800 [fix](ci) add persist-credentials: false in license-eyes pull_request_target checkout Prevents the GITHUB_TOKEN from being available to fork-supplied code during the license check workflow. Co-Authored-By: Claude Sonnet 4.6 <[email protected]> --- .github/workflows/license-eyes.yml | 1 + 1 file changed, 1 insertion(+) diff --git a/.github/workflows/license-eyes.yml b/.github/workflows/license-eyes.yml index 890efb2d9d1..7f382cc0a0c 100644 --- a/.github/workflows/license-eyes.yml +++ b/.github/workflows/license-eyes.yml @@ -36,6 +36,7 @@ jobs: uses: actions/checkout@v3 with: ref: ${{ github.event.pull_request.head.sha }} + persist-credentials: false - name: Check License uses: apache/[email protected] --------------------------------------------------------------------- To unsubscribe, e-mail: [email protected] For additional commands, e-mail: [email protected]
