fix: more stable jobs + dorny/paths-filter permissions

workflow-templates/cypress.yml

@@ -140,17 +140,20 @@ jobs:
 
       - name: Upload snapshots
         uses: actions/upload-artifact@ea165f8d65b6e75b540449e92b4886f43607fa02 # v4.6.2
+        continue-on-error: true
         if: always()
         with:
           name: snapshots_${{ matrix.containers }}
           path: cypress/snapshots
 
       - name: Extract NC logs
+        continue-on-error: true
         if: failure() && matrix.containers != 'component'
         run: docker logs nextcloud-cypress-tests-${{ env.APP_NAME }} > nextcloud.log
 
       - name: Upload NC logs
         uses: actions/upload-artifact@ea165f8d65b6e75b540449e92b4886f43607fa02 # v4.6.2
+        continue-on-error: true
         if: failure() && matrix.containers != 'component'
         with:
           name: nc_logs_${{ matrix.containers }}

workflow-templates/lint-eslint.yml

@@ -20,9 +20,8 @@ concurrency:
 jobs:
   changes:
     runs-on: ubuntu-latest-low
-    permissions:
-      contents: read
-      pull-requests: read
+    # Required for dorny/paths-filter
+    permissions: read-all
 
     outputs:
       src: ${{ steps.changes.outputs.src}}

workflow-templates/lint-typescript.yml

@@ -26,9 +26,8 @@ concurrency:
 jobs:
   changes:
     runs-on: ubuntu-latest-low
-    permissions:
-      contents: read
-      pull-requests: read
+    # Required for dorny/paths-filter
+    permissions: read-all
 
     outputs:
       src: ${{ steps.changes.outputs.src}}

workflow-templates/node-test.yml

@@ -26,9 +26,8 @@ concurrency:
 jobs:
   changes:
     runs-on: ubuntu-latest-low
-    permissions:
-      contents: read
-      pull-requests: read
+    # Required for dorny/paths-filter
+    permissions: read-all
 
     outputs:
       src: ${{ steps.changes.outputs.src}}

workflow-templates/node.yml

@@ -20,9 +20,8 @@ concurrency:
 jobs:
   changes:
     runs-on: ubuntu-latest-low
-    permissions:
-      contents: read
-      pull-requests: read
+    # Required for dorny/paths-filter
+    permissions: read-all
 
     outputs:
       src: ${{ steps.changes.outputs.src}}

workflow-templates/phpunit-mariadb.yml

@@ -35,9 +35,8 @@ jobs:
 
   changes:
     runs-on: ubuntu-latest-low
-    permissions:
-      contents: read
-      pull-requests: read
+    # Required for dorny/paths-filter
+    permissions: read-all
 
     outputs:
       src: ${{ steps.changes.outputs.src}}

workflow-templates/phpunit-mysql.yml

@@ -36,9 +36,8 @@ jobs:
 
   changes:
     runs-on: ubuntu-latest-low
-    permissions:
-      contents: read
-      pull-requests: read
+    # Required for dorny/paths-filter
+    permissions: read-all
 
     outputs:
       src: ${{ steps.changes.outputs.src}}

workflow-templates/phpunit-oci.yml

@@ -35,9 +35,8 @@ jobs:
 
   changes:
     runs-on: ubuntu-latest-low
-    permissions:
-      contents: read
-      pull-requests: read
+    # Required for dorny/paths-filter
+    permissions: read-all
 
     outputs:
       src: ${{ steps.changes.outputs.src }}

workflow-templates/phpunit-pgsql.yml

@@ -35,9 +35,8 @@ jobs:
 
   changes:
     runs-on: ubuntu-latest-low
-    permissions:
-      contents: read
-      pull-requests: read
+    # Required for dorny/paths-filter
+    permissions: read-all
 
     outputs:
       src: ${{ steps.changes.outputs.src }}

workflow-templates/phpunit-sqlite.yml

@@ -35,9 +35,8 @@ jobs:
 
   changes:
     runs-on: ubuntu-latest-low
-    permissions:
-      contents: read
-      pull-requests: read
+    # Required for dorny/paths-filter
+    permissions: read-all
 
     outputs:
       src: ${{ steps.changes.outputs.src}}