datasette

github/datasette

Fork 0

mirror of https://github.com/simonw/datasette.git synced 2025-12-10 16:51:24 +01:00

Commit graph

Author	SHA1	Message	Date
Naveen	2e9751672d	chore: Set permissions for GitHub actions (#1740 ) Restrict the GitHub token permissions only to the required ones; this way, even if the attackers will succeed in compromising your workflow, they won’t be able to do much. - Included permissions for the action. https://github.com/ossf/scorecard/blob/main/docs/checks.md#token-permissions https://docs.github.com/en/actions/using-workflows/workflow-syntax-for-github-actions#permissions https://docs.github.com/en/actions/using-jobs/assigning-permissions-to-jobs [Keeping your GitHub Actions and workflows secure Part 1: Preventing pwn requests](https://securitylab.github.com/research/github-actions-preventing-pwn-requests/) Signed-off-by: naveen <172697+naveensrinivasan@users.noreply.github.com>	2022-05-31 12:28:40 -07:00
Simon Willison	cd8b7bee8f	Run codespell against datasette source code too, refs #1417	2021-08-03 10:03:48 -07:00
Simon Willison	2208c3c68e	Spelling corrections plus CI job for codespell * Use codespell to check spelling in documentation, refs #1417 * Fixed spelling errors spotted by codespell, closes #1417 * Make codespell a docs dependency See also this TIL: https://til.simonwillison.net/python/codespell	2021-08-03 09:36:38 -07:00

Author

SHA1

Message

Date

Naveen

2e9751672d

chore: Set permissions for GitHub actions (#1740 )

Restrict the GitHub token permissions only to the required ones; this way, even if the attackers will succeed in compromising your workflow, they won’t be able to do much.

- Included permissions for the action. https://github.com/ossf/scorecard/blob/main/docs/checks.md#token-permissions

https://docs.github.com/en/actions/using-workflows/workflow-syntax-for-github-actions#permissions

https://docs.github.com/en/actions/using-jobs/assigning-permissions-to-jobs

[Keeping your GitHub Actions and workflows secure Part 1: Preventing pwn requests](https://securitylab.github.com/research/github-actions-preventing-pwn-requests/)

Signed-off-by: naveen <172697+naveensrinivasan@users.noreply.github.com>

2022-05-31 12:28:40 -07:00

Simon Willison

cd8b7bee8f

Run codespell against datasette source code too, refs #1417

2021-08-03 10:03:48 -07:00

Simon Willison

2208c3c68e

Spelling corrections plus CI job for codespell

* Use codespell to check spelling in documentation, refs #1417
* Fixed spelling errors spotted by codespell, closes #1417
* Make codespell a docs dependency

See also this TIL:  https://til.simonwillison.net/python/codespell

2021-08-03 09:36:38 -07:00

3 commits