GitHub workflows run with write-all tokens #1304
Description
Describe the bug
KerasNLP's automated workflows currently run with write-all tokens. This puts the project at risk of supply-chain attacks. GitHub recommends ensuring all workflows run with minimal permissions.
I've taken a look at the workflows and they don't need broad permissions.
This issue can be solved in two ways:
- add top-level read-only permissions to both workflows; and/or
- set the default token permissions to read-only in the repo settings.
I'll be sending a PR along with this issue that sets the top-level permissions. If you instead (or also) wish to modify the default token permissions:
- Open the repo settings
- Go to Actions > General
- Under "Workflow permissions", set them to "Read repository contents and packages permissions"
This can also be set at the organization level, protecting all keras-team repos. However, this might break workflows in other repos that rely on the implicit write-all token.
To Reproduce
The logs of a workflow's recent run on master show that it's running with write-all permissions. For example:
Expected behavior
Following the principle of least privilege, workflows should run only with the permissions they require.
Additional context
My name is Pedro and I work with Google and the Open Source Security Foundation (OpenSSF) to improve the supply-chain security of the open-source ecosystem. I've already sent PRs to other keras-team repos on this topic.
Would you like to help us fix it?
Yes! I'll be sending a PR along with this issue that sets the top-level permissions.