Open tschmidtb51 opened 1 month ago
We need to update the GHActions. actions/upload-artifact should be replaced by https://github.com/PaloAltoNetworks/upload-secure-artifact (See https://unit42.paloaltonetworks.com/github-repo-artifacts-leak-tokens/). Also, use least privileges (see https://www.paloaltonetworks.com/blog/prisma-cloud/github-actions-opt-out-permissions-model/) in all actions.
We need to update the GHActions. actions/upload-artifact should be replaced by https://github.com/PaloAltoNetworks/upload-secure-artifact (See https://unit42.paloaltonetworks.com/github-repo-artifacts-leak-tokens/). Also, use least privileges (see https://www.paloaltonetworks.com/blog/prisma-cloud/github-actions-opt-out-permissions-model/) in all actions.