Hendrik/xgboost
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

GitHub Workflows security hardening (#8267)

Browse Source 
Signed-off-by: Alex <aleksandrosansan@gmail.com>
This commit is contained in:
Alex 2022-09-26 18:54:27 +02:00 committed by GitHub
parent 8f77677193
commit 1082ccd3cc
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
6 changed files with 18 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

3
.github/workflows/jvm_tests.yml vendored
View File

@ -2,6 +2,9 @@ name: XGBoost-JVM-Tests
on: [push, pull_request] on: [push, pull_request]
permissions:
contents: read # to fetch code (actions/checkout)
jobs: jobs:
test-with-jvm: test-with-jvm:
name: Test JVM on OS ${{ matrix.os }} name: Test JVM on OS ${{ matrix.os }}

3
.github/workflows/main.yml vendored
View File

@ -6,6 +6,9 @@ name: XGBoost-CI
# events but only for the master branch # events but only for the master branch
on: [push, pull_request] on: [push, pull_request]
permissions:
contents: read # to fetch code (actions/checkout)
# A workflow run is made up of one or more jobs that can run sequentially or in parallel # A workflow run is made up of one or more jobs that can run sequentially or in parallel
jobs: jobs:
gtest-cpu: gtest-cpu:

3
.github/workflows/python_tests.yml vendored
View File

@ -2,6 +2,9 @@ name: XGBoost-Python-Tests
on: [push, pull_request] on: [push, pull_request]
permissions:
contents: read # to fetch code (actions/checkout)
jobs: jobs:
python-mypy-lint: python-mypy-lint:
runs-on: ubuntu-latest runs-on: ubuntu-latest

3
.github/workflows/python_wheels.yml vendored
View File

@ -2,6 +2,9 @@ name: XGBoost-Python-Wheels
on: [push, pull_request] on: [push, pull_request]
permissions:
contents: read # to fetch code (actions/checkout)
jobs: jobs:
python-wheels: python-wheels:
name: Build wheel for ${{ matrix.platform_id }} name: Build wheel for ${{ matrix.platform_id }}

3
.github/workflows/r_nold.yml vendored
View File

@ -10,6 +10,9 @@ on:
env: env:
R_PACKAGES: c('XML', 'igraph', 'data.table', 'ggplot2', 'DiagrammeR', 'Ckmeans.1d.dp', 'vcd', 'testthat', 'lintr', 'knitr', 'rmarkdown', 'e1071', 'cplm', 'devtools', 'float', 'titanic') R_PACKAGES: c('XML', 'igraph', 'data.table', 'ggplot2', 'DiagrammeR', 'Ckmeans.1d.dp', 'vcd', 'testthat', 'lintr', 'knitr', 'rmarkdown', 'e1071', 'cplm', 'devtools', 'float', 'titanic')
permissions:
contents: read # to fetch code (actions/checkout)
jobs: jobs:
test-R-noLD: test-R-noLD:
if: github.event.comment.body == '/gha run r-nold-test' && contains('OWNER,MEMBER,COLLABORATOR', github.event.comment.author_association) if: github.event.comment.body == '/gha run r-nold-test' && contains('OWNER,MEMBER,COLLABORATOR', github.event.comment.author_association)

3
.github/workflows/r_tests.yml vendored
View File

@ -6,6 +6,9 @@ env:
R_PACKAGES: c('XML', 'data.table', 'ggplot2', 'DiagrammeR', 'Ckmeans.1d.dp', 'vcd', 'testthat', 'lintr', 'knitr', 'rmarkdown', 'e1071', 'cplm', 'devtools', 'float', 'titanic') R_PACKAGES: c('XML', 'data.table', 'ggplot2', 'DiagrammeR', 'Ckmeans.1d.dp', 'vcd', 'testthat', 'lintr', 'knitr', 'rmarkdown', 'e1071', 'cplm', 'devtools', 'float', 'titanic')
GITHUB_PAT: ${{ secrets.GITHUB_TOKEN }} GITHUB_PAT: ${{ secrets.GITHUB_TOKEN }}
permissions:
contents: read # to fetch code (actions/checkout)
jobs: jobs:
lintr: lintr:
runs-on: ${{ matrix.config.os }} runs-on: ${{ matrix.config.os }}