welcome[bot]
commented
2 years ago Thanks for opening this issue. A GitHub docs team member should be by to give feedback soon. In the meantime, please check out the contributing guidelines.
Closed varunsh-coder closed 2 years ago
welcome[bot]
commented
2 years ago Thanks for opening this issue. A GitHub docs team member should be by to give feedback soon. In the meantime, please check out the contributing guidelines.
ramyaparimi
commented
2 years ago @varunsh-coder Thanks so much for opening an issue! I'll triage this for the team to take a look :eyes:
Code of Conduct
What article on docs.github.com is affected?
https://docs.github.com/en/actions/security-guides/security-hardening-for-github-actions
What part(s) of the article would you like to see updated?
OSSF Scorecards can find issues related to
token permissionsandactions that are not pinned. Adding a reference to Scorecards in the token permissions and (optionally) pin actions sections of the hardening guide will help readers to take action to address these issues.https://github.blog/2022-01-19-reducing-security-risk-oss-actions-opensff-scorecards-v4/
Additional information
No response