Improve CI security - Githubissues

c9s / r3

libr3 is a high-performance path dispatching library. It compiles your route paths into a prefix tree (trie). By using the constructed prefix trie in the start-up time, you may dispatch your routes with efficiency

http://c9s.github.com/r3/bench.html

MIT License

815 stars 83 forks source link

Improve CI security #158

Closed bjosv closed 5 months ago

bjosv commented 5 months ago

Improve security for CI runs according to OpenSSF recommendations:

Add dependabot for automated dependency updates https://github.com/ossf/scorecard/blob/main/docs/checks.md#dependency-update-tool
Pin versions of Github actions in CI https://github.com/ossf/scorecard/blob/main/docs/checks.md#pinned-dependencies
Set read-only permission for Github Actions in CI https://github.com/ossf/scorecard/blob/main/docs/checks.md#token-permissions

c9s commented 5 months ago

Sounds awesome! Looks great!

bjosv commented 5 months ago

Sorry for the edits in the PR title/headline, the PR somehow got submitted before it was ready .. The touchpad probably needs to be replaced :) I'll look into the coveralls problem this triggered before merging.

coveralls commented 5 months ago

coverage: 91.041% (-0.3%) from 91.304% when pulling c38bf93720cbe2a57da136aca9e8ab8aa3516537 on Nordix:openssf-recommendations into c1aab00c40f0d2f89c7fde8de254474ad08615b8 on c9s:2.0.