From 30f043eccec2b8c7c8f29f4eb094430d65a47abc Mon Sep 17 00:00:00 2001 From: Gwynne Raskind Date: Mon, 6 Oct 2025 11:12:01 -0500 Subject: [PATCH 1/2] Enable Dependabot and update CI to add missing permissions (#219) * Add permissions to test.yml * Add permissions to api-docs.yml * Add Dependabot config --- .github/dependabot.yml | 10 ++++++++++ .github/workflows/api-docs.yml | 2 ++ .github/workflows/test.yml | 10 ++++++---- 3 files changed, 18 insertions(+), 4 deletions(-) create mode 100644 .github/dependabot.yml diff --git a/.github/dependabot.yml b/.github/dependabot.yml new file mode 100644 index 00000000..998a0ebe --- /dev/null +++ b/.github/dependabot.yml @@ -0,0 +1,10 @@ +version: 2 +updates: + - package-ecosystem: "github-actions" + directory: "/" + schedule: + interval: "daily" + groups: + dependencies: + patterns: + - "*" diff --git a/.github/workflows/api-docs.yml b/.github/workflows/api-docs.yml index 7d0af7e5..80d1b565 100644 --- a/.github/workflows/api-docs.yml +++ b/.github/workflows/api-docs.yml @@ -3,6 +3,8 @@ on: push: branches: - main +permissions: + contents: read jobs: build-and-deploy: diff --git a/.github/workflows/test.yml b/.github/workflows/test.yml index a92941ea..006703ab 100644 --- a/.github/workflows/test.yml +++ b/.github/workflows/test.yml @@ -5,8 +5,10 @@ concurrency: on: pull_request: { types: [opened, reopened, synchronize, ready_for_review] } push: { branches: [ main ] } +permissions: + contents: read -jobs: +jobs: unit-tests: uses: vapor/ci/.github/workflows/run-unit-tests.yml@main with: @@ -18,9 +20,9 @@ jobs: runs-on: ubuntu-latest container: swift:noble steps: - - uses: actions/checkout@v4 + - uses: actions/checkout@v5 with: { path: console-kit } - - uses: actions/checkout@v4 + - uses: actions/checkout@v5 with: { repository: 'vapor/vapor', path: vapor } - run: swift package --package-path vapor edit console-kit --path console-kit - - run: SWIFT_DETERMINISTIC_HASHING=1 swift test --package-path vapor + - run: swift test --package-path vapor From 31be5487cd57d190b2758b04b3fc461a5d91df40 Mon Sep 17 00:00:00 2001 From: Gwynne Raskind Date: Mon, 6 Oct 2025 11:13:15 -0500 Subject: [PATCH 2/2] Quick-fix api-docs workflow --- .github/workflows/api-docs.yml | 1 + 1 file changed, 1 insertion(+) diff --git a/.github/workflows/api-docs.yml b/.github/workflows/api-docs.yml index 80d1b565..2c705ec9 100644 --- a/.github/workflows/api-docs.yml +++ b/.github/workflows/api-docs.yml @@ -5,6 +5,7 @@ on: - main permissions: contents: read + id-token: write jobs: build-and-deploy: