Skip to content

ci: Review PR #496 - Reduce usage of token with elevated permissions#514

Open
dellagustin-sap wants to merge 1 commit into
use_app_securityfrom
suggestion#496__PR-Review-min-permissions
Open

ci: Review PR #496 - Reduce usage of token with elevated permissions#514
dellagustin-sap wants to merge 1 commit into
use_app_securityfrom
suggestion#496__PR-Review-min-permissions

Conversation

@dellagustin-sap
Copy link
Copy Markdown

@dellagustin-sap dellagustin-sap commented Jun 2, 2026

This commit refactors the release.yml workflow to to reduce the usage of the token generated with the GitHub app.

actions/checkout is now using the default token and not persisting credentials, as they are not needed (e.g., Upload VSIX to releases receives the token through the environment.

The token is now generated just before it is needed.

ci: Review PR #496 - Reduce usage of token with elevated permissions
7c9c08b 
This commit refactors the `release.yml` workflow to to reduce
the usage of the token generated with the GitHub app.

actions/checkout is now using the default token and not persisting
credentials, as they are not needed (e.g., _Upload VSIX to releases_
receives the token through the environment.

The token is now generated just before it is needed.
@dellagustin-sap dellagustin-sap requested a review from bd82 June 2, 2026 11:17
@dellagustin-sap dellagustin-sap mentioned this pull request Jun 2, 2026
Open
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@bd82 bd82 Awaiting requested review from bd82

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@dellagustin-sap