(shiro) branch main updated: gha: actions/checkout set `persist-credentials: false` (#2532)

Mon, 09 Feb 2026 08:48:06 -0800 

This is an automated email from the ASF dual-hosted git repository.

lprimak pushed a commit to branch main
in repository https://gitbox.apache.org/repos/asf/shiro.git


The following commit(s) were added to refs/heads/main by this push:
     new e246cb9a8 gha: actions/checkout set `persist-credentials: false` 
(#2532)
e246cb9a8 is described below

commit e246cb9a829981679a980cbc7fce54ba0921d099
Author: John Bampton <[email protected]>
AuthorDate: Tue Feb 10 02:47:52 2026 +1000

    gha: actions/checkout set `persist-credentials: false` (#2532)
    
    Updated 4 workflows
---
 .github/workflows/codeql.yml            | 2 ++
 .github/workflows/dependency-review.yml | 2 ++
 .github/workflows/maven.yml             | 4 ++++
 .github/workflows/pre-commit.yml        | 2 ++
 4 files changed, 10 insertions(+)

diff --git a/.github/workflows/codeql.yml b/.github/workflows/codeql.yml
index cc5da7e11..71061ce4f 100644
--- a/.github/workflows/codeql.yml
+++ b/.github/workflows/codeql.yml
@@ -61,6 +61,8 @@ jobs:
     steps:
       - name: Checkout repository
         uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # 
v6.0.2
+        with:
+          persist-credentials: false
 
       - name: Cache local Maven repository
         uses: actions/cache@cdf6c1fa76f9f475f3d7449005a359c84ca0f306 # v5.0.3
diff --git a/.github/workflows/dependency-review.yml 
b/.github/workflows/dependency-review.yml
index d4b9326b0..9e6f876ce 100644
--- a/.github/workflows/dependency-review.yml
+++ b/.github/workflows/dependency-review.yml
@@ -27,5 +27,7 @@ jobs:
     steps:
       - name: 'Checkout Repository'
         uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # 
v6.0.2
+        with:
+          persist-credentials: false
       - name: 'Dependency Review'
         uses: 
actions/dependency-review-action@3c4e3dcb1aa7874d2c16be7d79418e9b7efd6261 # 
v4.8.2
diff --git a/.github/workflows/maven.yml b/.github/workflows/maven.yml
index c83680bc6..37a2d9086 100644
--- a/.github/workflows/maven.yml
+++ b/.github/workflows/maven.yml
@@ -34,6 +34,8 @@ jobs:
     steps:
       - name: Checkout
         uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # 
v6.0.2
+        with:
+          persist-credentials: false
 
       - name: Set up JDK
         uses: actions/setup-java@be666c2fcd27ec809703dec50e508c2fdc7f6654 # 
v5.2.0
@@ -81,6 +83,8 @@ jobs:
     steps:
       - name: Checkout
         uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # 
v6.0.2
+        with:
+          persist-credentials: false
 
       - name: Set up JDK
         uses: actions/setup-java@be666c2fcd27ec809703dec50e508c2fdc7f6654 # 
v5.2.0
diff --git a/.github/workflows/pre-commit.yml b/.github/workflows/pre-commit.yml
index 6630c575c..947319ec8 100644
--- a/.github/workflows/pre-commit.yml
+++ b/.github/workflows/pre-commit.yml
@@ -33,6 +33,8 @@ jobs:
     steps:
       - name: 'Checkout ${{ github.ref }} ( ${{ github.sha }} )'
         uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # 
v6.0.2
+        with:
+          persist-credentials: false
       - uses: actions/setup-python@a309ff8b426b58ec0e2a45f0f869d46889d02405 # 
6.2.0
         with:
           python-version: '3.14.1' # Version range or exact version of a 
Python version to use, using SemVer's version range syntax

Reply via email to