actions/create-pull-request
1
0
Fork 0
mirror of https://forgejo.stefka.eu/jiriks74/create-pull-request.git synced 2025-01-18 16:01:06 +01:00
Code Issues Projects Releases Packages Wiki Activity Actions

rephrase best practice

Browse source
This commit is contained in:
lichao127 2024-07-26 15:03:50 -07:00
parent ed49fb2ef7
commit 036546c90e
No known key found for this signature in database
GPG key ID: F9277D26D38C3D9A
1 changed files with 1 additions and 1 deletions
Download patch file Download diff file Expand all files Collapse all files

2
docs/concepts-guidelines.md
View file

@ -166,7 +166,7 @@ Alternatively, use the action directly and reference the commit hash for the ver
This action uses [ncc](https://github.com/vercel/ncc) to compile the Node.js code and dependencies into a single JavaScript file under the [dist](https://github.com/peter-evans/create-pull-request/tree/main/dist) directory. This action uses [ncc](https://github.com/vercel/ncc) to compile the Node.js code and dependencies into a single JavaScript file under the [dist](https://github.com/peter-evans/create-pull-request/tree/main/dist) directory.
A best security practice is to assign the least permission required for your workflow (the principle of least privilege). A security best practice is to assign the least permission required for your workflow (the principle of least privilege).
Refer to [Assigning permissions to jobs](https://docs.github.com/en/actions/using-jobs/assigning-permissions-to-jobs#defining-access-for-the-github_token-permissions). Refer to [Assigning permissions to jobs](https://docs.github.com/en/actions/using-jobs/assigning-permissions-to-jobs#defining-access-for-the-github_token-permissions).
```yaml ```yaml