mirror of
https://github.com/ceph/ceph-csi.git
synced 2024-12-18 11:00:25 +00:00
2672fad90a
Restrict the GitHub token permissions only to the required ones; this way, even if the attackers will succeed in compromising your workflow, they won’t be able to do much. - Included permissions for the action. https://github.com/ossf/scorecard/blob/main/docs/checks.md#token-permissions https://docs.github.com/en/actions/using-jobs/assigning-permissions-to-jobs Signed-off-by: naveen <172697+naveensrinivasan@users.noreply.github.com> naveensrinivasan <172697+naveensrinivasan@users.noreply.github.com>
23 lines
509 B
YAML
23 lines
509 B
YAML
---
|
|
name: "Retest approved pull Requests"
|
|
# yamllint disable-line rule:truthy
|
|
on:
|
|
schedule:
|
|
# Run the retest action every 30 minutes
|
|
- cron: "30 * * * *"
|
|
|
|
permissions:
|
|
contents: read
|
|
|
|
jobs:
|
|
retest:
|
|
runs-on: ubuntu-latest
|
|
steps:
|
|
# path to the retest action
|
|
- uses: ceph/ceph-csi/actions/retest@devel
|
|
with:
|
|
GITHUB_TOKEN: ${{ secrets.CEPH_CSI_BOT_TOKEN }}
|
|
required-label: "ci/retry/e2e"
|
|
max-retry: "5"
|
|
required-approve-count: "2"
|