Elgato_dark/chronos-forecasting
1
0
Fork 0
mirror of https://github.com/amazon-science/chronos-forecasting synced 2026-05-23 09:39:35 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions

Scope down GitHub token permissions (#328)

Browse source 
*Issue #, if available:*

*Description of changes:*

Scope down GitHub token permissions for GHA security best practices.

By submitting this pull request, I confirm that you can use, modify,
copy, and redistribute this contribution, under the terms of your
choice.
This commit is contained in:
Adnan Khan 2025-10-21 01:48:03 -04:00 committed by GitHub
parent 330c5438a6
commit a52d460f04
No known key found for this signature in database
GPG key ID: B5690EEEBB952194
2 changed files with 8 additions and 0 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

4
.github/workflows/ci.yml vendored
View file

@ -8,6 +8,10 @@ on:
schedule:
- cron: "0 8 * * *" # Run at 8 AM UTC
permissions:
contents: read
jobs:
type-check:
strategy:

4
.github/workflows/eval-model.yml vendored
View file

@ -11,6 +11,10 @@ on:
- synchronize # When new commits are pushed to the PR
- labeled # When a label is added to the PR
permissions:
contents: read
jobs:
evaluate-and-print:
if: contains(github.event.pull_request.labels.*.name, 'run-eval') # Only run if 'run-eval' label is added