Skip to content

chore: restrict GitHub workflow permissions - future-proof #5276

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 1 commit into from
Nov 6, 2025
Merged

chore: restrict GitHub workflow permissions - future-proof #5276

merged 1 commit into from
Nov 6, 2025

Conversation

@incertum
Copy link
Contributor

@incertum incertum commented Oct 10, 2025

@incertum
Copy link
Contributor Author

incertum commented Oct 17, 2025

May I kindly check in on the status of this PR? Thank you.

shahmishal
shahmishal reviewed Oct 17, 2025
View reviewed changes
.github/workflows/automerge_to_main.yml
name: Create PR to merge release branch into the main branch
# At the end of a release cycle, we may want to automatically include all changes to release branches on the main branch to avoid the need for cherry-picking changes back to release branches
# This workflow can be disabled earlier in the release cycle in the GitHub UI as described in https://docs.github.com/en/actions/managing-workflow-runs-and-deployments/managing-workflow-runs/disabling-and-enabling-a-workflow
permissions:
Copy link
Member

@shahmishal shahmishal Oct 17, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Same question I asked in different PR in swift-format.

How does this change impact the permissions set inside jobs.

permissions:
      contents: write
      pull-requests: write

Copy link
Contributor Author

@incertum incertum Oct 20, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

See answer in the swift-format PR: swiftlang/swift-format#1073 (comment)

@incertum
Copy link
Contributor Author

incertum commented Oct 27, 2025

Thanks for approving the PR, what are the next steps? Thanks.

@jmschonfeld
Copy link
Contributor

jmschonfeld commented Oct 27, 2025

@swift-ci please test

@incertum
Copy link
Contributor Author

incertum commented Oct 29, 2025

Hmm the Windows CI still appears to block merging ... any ideas on how to unblock this PR? Thanks a bunch!

@jmschonfeld
Copy link
Contributor

jmschonfeld commented Nov 3, 2025

@swift-ci please test Windows platform

@incertum
Copy link
Contributor Author

incertum commented Nov 6, 2025

@jmschonfeld and @shahmishal CI is cleared - may I kindly check in on the status of this PR? Thank you.

@jmschonfeld jmschonfeld merged commit 265274a into swiftlang:main Nov 6, 2025
2 checks passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@jmschonfeld jmschonfeld jmschonfeld approved these changes

@shahmishal shahmishal shahmishal approved these changes

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@incertum @jmschonfeld @shahmishal