Adding updated scripts #2752
Adding updated scripts #2752
Conversation
hellovai
temporarily deployed
to
boundary-tools-dev
GitHub Actions
Inactive
hellovai
temporarily deployed
to
boundary-tools-dev
GitHub Actions
Inactive
hellovai
temporarily deployed
to
boundary-tools-dev
GitHub Actions
Inactive
|
The latest updates on your projects. Learn more about Vercel for GitHub.
|
|
🌿 Preview your docs: https://boundary-preview-5fdeecc6-5ca0-4244-80aa-0eccd2d4c146.docs.buildwithfern.com |
hellovai
temporarily deployed
to
boundary-tools-dev
GitHub Actions
Inactive
hellovai
temporarily deployed
to
boundary-tools-dev
GitHub Actions
Inactive
hellovai
temporarily deployed
to
boundary-tools-dev
GitHub Actions
Inactive
|
🌿 Preview your docs: https://boundary-preview-3fb59d0f-cdda-43e5-9cee-91513a2524cf.docs.buildwithfern.com |
hellovai
temporarily deployed
to
boundary-tools-dev
GitHub Actions
Inactive
hellovai
temporarily deployed
to
boundary-tools-dev
GitHub Actions
Inactive
hellovai
temporarily deployed
to
boundary-tools-dev
GitHub Actions
Inactive
![github-advanced-security[bot]](https://avatars.githubusercontent.com/in/57789?s=60&v=4){kind=small}
| runs-on: ubuntu-latest | ||
| steps: | ||
| - name: Checkout repository | ||
| uses: actions/checkout@v4 | ||
|
|
||
| - name: Setup Rust (1.89) | ||
| uses: ./.github/actions/setup-rust | ||
| with: | ||
| toolchain: '1.89' | ||
| enable-wasm: 'false' | ||
|
|
||
| - name: Install mise and repo tools (jdx/mise-action@v3) | ||
| uses: jdx/mise-action@v3 | ||
| with: | ||
| install: true | ||
| cache: true | ||
| reshim: true | ||
| github_token: ${{ secrets.GITHUB_TOKEN }} | ||
| # Let the action read the repo's mise.toml /.tool-versions by default | ||
| working_directory: . | ||
|
|
||
|
|
||
| - name: Make setup script executable | ||
| run: chmod +x ./scripts/setup-dev.sh || true | ||
|
|
||
| - name: Run project setup | ||
| env: | ||
| CI: true | ||
| run: | | ||
| set -euxo pipefail | ||
| bash ./scripts/setup-dev.sh | ||
|
|
||
| - name: Build project | ||
| run: | | ||
| pnpm build |
Check warning
Code scanning / CodeQL
Workflow does not contain permissions Medium
Show autofix suggestion
Hide autofix suggestion
Copilot Autofix
AI 7 days ago
To fix the issue, you should add an explicit permissions: block to this workflow to limit the permissions granted to the GITHUB_TOKEN. The correct place to do this is at the root level of the workflow file, directly beneath the name: field (or before/after on:), so that it applies to all jobs unless overwritten at the job level. Since none of the current steps require write permissions, you can set contents: read as the minimal starting point. This change only requires adding a new block and does not alter existing functionality.
| @@ -1,4 +1,6 @@ | ||
| name: Onboarding Setup | ||
| permissions: | ||
| contents: read | ||
|
|
||
| on: | ||
| push: |
| enable-wasm: 'false' | ||
|
|
||
| - name: Install mise and repo tools (jdx/mise-action@v3) | ||
| uses: jdx/mise-action@v3 |
Check warning
Code scanning / CodeQL
Unpinned tag for a non-immutable Action in workflow Medium
|
🌿 Preview your docs: https://boundary-preview-dc91784f-9f2c-4663-adf2-4fdb9ce1b070.docs.buildwithfern.com |
hellovai
temporarily deployed
to
boundary-tools-dev
GitHub Actions
Inactive
hellovai
temporarily deployed
to
boundary-tools-dev
GitHub Actions
Inactive
hellovai
temporarily deployed
to
boundary-tools-dev
GitHub Actions
Inactive
|
🌿 Preview your docs: https://boundary-preview-70a5c92b-893a-4ffc-8895-dd1113adc4ad.docs.buildwithfern.com |
hellovai
temporarily deployed
to
boundary-tools-dev
GitHub Actions
Inactive
hellovai
temporarily deployed
to
boundary-tools-dev
GitHub Actions
Inactive
hellovai
temporarily deployed
to
boundary-tools-dev
GitHub Actions
Inactive
|
🌿 Preview your docs: https://boundary-preview-b29a28cf-e482-41d7-bc95-8f5a2d0f816f.docs.buildwithfern.com |
No description provided.