Commit 08a4125
committed
fix: address security vulnerabilities in CodeQL workflow
- Add workflow-level permissions to fix unspecified permissions issue
- Pin GitHub Actions to specific SHA versions for security:
- actions/checkout@v4.2.2 (SHA: 11bd71901bbe5b1630ceea73d27597364c9af683)
- github/codeql-action@v3.29.2 (SHA: 181d5eefc20863364f96762470ba6f862bdef56b)
Fixes the 3 high-severity code vulnerabilities identified by static analysis.1 parent 71f8996 commit 08a4125
1 file changed
Lines changed: 9 additions & 3 deletions
| Original file line number | Diff line number | Diff line change | |
|---|---|---|---|
| |||
11 | 11 | | |
12 | 12 | | |
13 | 13 | | |
| 14 | + | |
| 15 | + | |
| 16 | + | |
| 17 | + | |
| 18 | + | |
| 19 | + | |
14 | 20 | | |
15 | 21 | | |
16 | 22 | | |
| |||
63 | 69 | | |
64 | 70 | | |
65 | 71 | | |
66 | | - | |
| 72 | + | |
67 | 73 | | |
68 | 74 | | |
69 | 75 | | |
| |||
73 | 79 | | |
74 | 80 | | |
75 | 81 | | |
76 | | - | |
| 82 | + | |
77 | 83 | | |
78 | 84 | | |
79 | 85 | | |
| |||
101 | 107 | | |
102 | 108 | | |
103 | 109 | | |
104 | | - | |
| 110 | + | |
105 | 111 | | |
106 | 112 | | |
0 commit comments