Skip to content

Commit 28adf33

Browse files
tashiantashian
authored
Merge pull request #296 from smallstep/carl/disable-ghas-by-default
ci: Disable zizmor GitHub Advanced Security upload by default
2 parents fa018e4 + ff654e2 commit 28adf33

4 files changed

Lines changed: 4 additions & 10 deletions

File tree

.github/workflows/actionci.yml

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -17,7 +17,7 @@ on:
1717
description: Upload zizmor results to GitHub Advanced Security
1818
required: false
1919
type: boolean
20-
default: true
20+
default: false
2121

2222
permissions:
2323
contents: read

.github/workflows/frizbee.yml

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -4,7 +4,7 @@ on:
44

55
jobs:
66
frizbee:
7-
name: Check action pinning
7+
name: frizbee
88
runs-on: ubuntu-latest
99
steps:
1010
- uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2

.github/workflows/goCI.yml

Lines changed: 0 additions & 6 deletions
Original file line numberDiff line numberDiff line change
@@ -145,12 +145,6 @@ jobs:
145145
PAT: ${{ secrets.PAT }}
146146
CODECOV_TOKEN: ${{ secrets.CODECOV_TOKEN }}
147147

148-
zizmor:
149-
uses: ./.github/workflows/zizmor.yml
150-
151-
frizbee:
152-
uses: ./.github/workflows/frizbee.yml
153-
154148
build:
155149
uses: ./.github/workflows/goBuild.yml
156150
if: inputs.run-build

.github/workflows/zizmor.yml

Lines changed: 2 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -5,11 +5,11 @@ on:
55
advanced-security:
66
description: Upload results to GitHub Advanced Security
77
type: boolean
8-
default: true
8+
default: false
99

1010
jobs:
1111
zizmor:
12-
name: Scan GitHub workflows
12+
name: zizmor
1313
runs-on: ubuntu-latest
1414
steps:
1515
- uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2

0 commit comments

Comments
 (0)