This is an automated email from the ASF dual-hosted git repository. rzo1 pushed a commit to branch OPENNLP-1689---Enhance-GH-action-setup-by-#builds-recommendation- in repository https://gitbox.apache.org/repos/asf/opennlp.git
commit e5f44ba86bdd11003c15d808ccf2781a43033b48 Author: Richard Zowalla <[email protected]> AuthorDate: Mon Jan 6 08:45:39 2025 +0100 OPENNLP-1689 - Update GH actions with ASF #builds security recommendations --- .github/workflows/maven.yml | 2 ++ .github/workflows/publish-snapshots.yml | 2 ++ 2 files changed, 4 insertions(+) diff --git a/.github/workflows/maven.yml b/.github/workflows/maven.yml index 2655ece1..2b765d75 100644 --- a/.github/workflows/maven.yml +++ b/.github/workflows/maven.yml @@ -40,6 +40,8 @@ jobs: steps: - uses: actions/checkout@v4 + with: + persist-credentials: false - uses: actions/cache@v4 with: path: ~/.m2/repository diff --git a/.github/workflows/publish-snapshots.yml b/.github/workflows/publish-snapshots.yml index b7114b45..7678b233 100644 --- a/.github/workflows/publish-snapshots.yml +++ b/.github/workflows/publish-snapshots.yml @@ -31,6 +31,8 @@ jobs: steps: - name: Checkout uses: actions/checkout@v4 + with: + persist-credentials: false - name: Cache Maven Repository uses: actions/cache@v4 with:
