From 54ae1ddb391565298fa11fb0e175865fa5ad28ca Mon Sep 17 00:00:00 2001 From: Diego Jahn Date: Wed, 25 Oct 2023 17:03:15 +0200 Subject: [PATCH] workflow: add content, package and PR permissions --- .github/workflows/publish.yml | 10 ++++++++-- .github/workflows/tests.yml | 12 ++++-------- 2 files changed, 12 insertions(+), 10 deletions(-) diff --git a/.github/workflows/publish.yml b/.github/workflows/publish.yml index 061acfd..04ad1eb 100644 --- a/.github/workflows/publish.yml +++ b/.github/workflows/publish.yml @@ -6,7 +6,11 @@ on: jobs: pr-pull: if: contains(github.event.pull_request.labels.*.name, 'pr-pull') - runs-on: ubuntu-latest + runs-on: ubuntu-22.04 + permissions: + contents: write + packages: write + pull-requests: write steps: - name: Set up Homebrew uses: Homebrew/actions/setup-homebrew@master @@ -17,6 +21,8 @@ jobs: - name: Pull bottles env: HOMEBREW_GITHUB_API_TOKEN: ${{ github.token }} + HOMEBREW_GITHUB_PACKAGES_TOKEN: ${{ github.token }} + HOMEBREW_GITHUB_PACKAGES_USER: ${{ github.actor }} PULL_REQUEST: ${{ github.event.pull_request.number }} run: brew pr-pull --debug --tap=$GITHUB_REPOSITORY $PULL_REQUEST @@ -30,4 +36,4 @@ jobs: if: github.event.pull_request.head.repo.fork == false env: BRANCH: ${{ github.event.pull_request.head.ref }} - run: git push --delete origin $BRANCH + run: git push --delete origin $BRANCH \ No newline at end of file diff --git a/.github/workflows/tests.yml b/.github/workflows/tests.yml index 46958e3..8710549 100644 --- a/.github/workflows/tests.yml +++ b/.github/workflows/tests.yml @@ -8,7 +8,7 @@ jobs: test-bot: strategy: matrix: - os: [ubuntu-latest, macos-latest] + os: [ubuntu-22.04, macos-13] runs-on: ${{ matrix.os }} steps: - name: Set up Homebrew @@ -17,23 +17,19 @@ jobs: - name: Cache Homebrew Bundler RubyGems id: cache - uses: actions/cache@v1 + uses: actions/cache@v3 with: path: ${{ steps.set-up-homebrew.outputs.gems-path }} key: ${{ runner.os }}-rubygems-${{ steps.set-up-homebrew.outputs.gems-hash }} restore-keys: ${{ runner.os }}-rubygems- - - name: Install Homebrew Bundler RubyGems - if: steps.cache.outputs.cache-hit != 'true' - run: brew install-bundler-gems - - run: brew test-bot --only-cleanup-before - run: brew test-bot --only-setup - run: brew test-bot --only-tap-syntax - - run: brew test-bot --only-formulae + - run: brew test-bot --only-formulae --root-url=morpheus-lab/morpheus if: github.event_name == 'pull_request' - name: Upload bottles as artifact @@ -41,4 +37,4 @@ jobs: uses: actions/upload-artifact@main with: name: bottles - path: '*.bottle.*' + path: '*.bottle.*' \ No newline at end of file