From 02cdc13efa2d9f1b1e0a441e65e8cc29c757b3cc Mon Sep 17 00:00:00 2001 From: Xiaoyun Zhang Date: Thu, 22 Feb 2024 08:58:12 -0800 Subject: [PATCH] add security-events write permission (#290) ## Purpose * ... partially fix #285 ## Does this introduce a breaking change? ``` [ ] Yes [ ] No ``` ## Pull Request Type What kind of change does this Pull Request introduce? ``` [ ] Bugfix [ ] Feature [ ] Code style update (formatting, local variables) [ ] Refactoring (no functional changes, no api changes) [ ] Documentation content changes [ ] Other... Please describe: ``` ## How to Test * Get the code ``` git clone [repo-address] cd [repo-name] git checkout [branch-name] npm install ``` * Test the code ``` ``` ## What to Check Verify that the following are valid * ... ## Other Information --- .github/workflows/azure-dev-validation.yml | 7 ++++++- 1 file changed, 6 insertions(+), 1 deletion(-) diff --git a/.github/workflows/azure-dev-validation.yml b/.github/workflows/azure-dev-validation.yml index 1f71dd71..5736b851 100644 --- a/.github/workflows/azure-dev-validation.yml +++ b/.github/workflows/azure-dev-validation.yml @@ -10,6 +10,11 @@ on: paths: - "infra/**" +permissions: + contents: read + actions: read + security-events: write + jobs: build: @@ -31,7 +36,7 @@ jobs: tools: templateanalyzer - name: Upload alerts to Security tab - uses: github/codeql-action/upload-sarif@v2 + uses: github/codeql-action/upload-sarif@v3 if: github.repository == 'Azure-Samples/azure-search-openai-demo-csharp' with: sarif_file: ${{ steps.msdo.outputs.sarifFile }} \ No newline at end of file