Skip to content

[fix](build): Actions(permissions)#2149

Merged
RalphHightower merged 1 commit intomainfrom
RalphHightower-patch-172161
Oct 15, 2025
Merged

[fix](build): Actions(permissions)#2149
RalphHightower merged 1 commit intomainfrom
RalphHightower-patch-172161

Conversation

@RalphHightower
Copy link
Copy Markdown
Owner

@RalphHightower RalphHightower commented Oct 15, 2025

Pull request type

Please check the type of change your PR introduces:

  • New blog post(s)
  • Bugfix(es)
  • Jekyll change(s)
  • Liquid change(s)
  • Markdown change(s)
  • YAML change(s)
  • Build error(s)
  • Feature(s)
  • Code style update (formatting, renaming)
  • Refactoring (no functional changes, no api changes)
  • Build related change(s)
  • Documentation content change(s)
  • Other (please describe):

Language(s)

  • awk
  • C/C++/C#
  • Markdown
  • Ruby
  • Python
  • YAML

Operating System(s)

  • Linux
  • Unix
  • Solaris
  • Windows

Files Added

Files Modified

  • .github/workflows/issueQuarterlyRelease.yml

Files Deleted

What is the current behavior?

Issue Number: IS#2148

What is the new behavior?

  • runs at scheduled times

Other information

@RalphHightower
[fix](build): Actions(permissions)
1e7f2eb 
Signed-off-by: Ralph Hightower <32745442+RalphHightower@users.noreply.github.com>
@RalphHightower RalphHightower self-assigned this Oct 15, 2025
@RalphHightower RalphHightower added build Build Change (actions) config – YAML file Configuration file or GitHub action file labels Oct 15, 2025
@github-actions
Copy link
Copy Markdown

github-actions Bot commented Oct 15, 2025

Dependency Review

✅ No vulnerabilities or license issues or OpenSSF Scorecard issues found.

OpenSSF Scorecard

PackageVersionScoreDetails
actions/step-security/harden-runner f4a75cfd619ee5ce8d5b864b0d183aff3c69b55a 🟢 8.7
Details
CheckScoreReason
Binary-Artifacts🟢 10no binaries found in the repo
Branch-Protection⚠️ -1internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration
CI-Tests🟢 108 out of 8 merged PRs checked by a CI test -- score normalized to 10
CII-Best-Practices⚠️ 0no effort to earn an OpenSSF best practices badge detected
Code-Review🟢 10all changesets reviewed
Contributors🟢 6project has 2 contributing companies or organizations -- score normalized to 6
Dangerous-Workflow🟢 10no dangerous workflow patterns detected
Dependency-Update-Tool🟢 10update tool detected
Fuzzing⚠️ 0project is not fuzzed
License🟢 10license file detected
Maintained🟢 1019 commit(s) and 1 issue activity found in the last 90 days -- score normalized to 10
Packaging⚠️ -1packaging workflow not detected
Pinned-Dependencies🟢 6dependency not pinned by hash detected -- score normalized to 6
SAST🟢 9SAST tool detected but not run on all commits
Security-Policy🟢 10security policy file detected
Signed-Releases⚠️ -1no releases found
Token-Permissions🟢 10GitHub workflow tokens follow principle of least privilege
Vulnerabilities🟢 100 existing vulnerabilities detected

Scanned Files

  • .github/workflows/issueQuarterlyRelease.yml

@RalphHightower RalphHightower linked an issue Oct 15, 2025 that may be closed by this pull request
IS#2148 – Invalid workflow: issueQuarterlyRelease.yml #2148
Closed
1 task
@RalphHightower RalphHightower merged commit a6e80a8 into main Oct 15, 2025
7 of 10 checks passed
@RalphHightower RalphHightower added the action – success Successful action label Oct 18, 2025
@github-actions github-actions Bot deleted the RalphHightower-patch-172161 branch April 19, 2026 06:42
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

@RalphHightower RalphHightower

Labels

action – success Successful action build Build Change (actions) config – YAML file Configuration file or GitHub action file

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

IS#2148 – Invalid workflow: issueQuarterlyRelease.yml

1 participant

@RalphHightower