CodingPirates/blockly
1
0
Fork 0
mirror of https://github.com/google/blockly.git synced 2026-01-07 17:10:11 +01:00
Code Issues Packages Projects Releases Wiki Activity
9,255 Commits 106 Branches 106 Tags
d97fa95edc2a2c1c814286f0058e95463fa4b06b
Commit Graph

9 Commits

Author SHA1 Message Date
dependabot[bot]
d97fa95edc chore(deps): bump actions/github-script from 7 to 8 (#9346) 
Bumps [actions/github-script](https://github.com/actions/github-script) from 7 to 8.
- [Release notes](https://github.com/actions/github-script/releases)
- [Commits](https://github.com/actions/github-script/compare/v7...v8)

---
updated-dependencies:
- dependency-name: actions/github-script
  dependency-version: '8'
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2025-10-03 11:26:25 -07:00
Aaron Dodson
0a95939a8e chore: Try another workflow permission. (#8811) 
* chore: Try another workflow permission.

* chore: Explicitly specify the GitHub token.

* chore: Try with contents: write.

* chore: Try write-all at the top level.

* chore: try regular pull_request.

* chore: Fix assign reviewers action configuration.
 2025-04-23 10:46:26 -07:00
Aaron Dodson
df616e83e5 chore: Try adding additional permissions. (#8810) 2025-03-19 09:58:38 -07:00
Aaron Dodson
a1f739334a chore: Update permissions on GitHub actions. (#8808) 2025-03-18 09:21:37 -07:00
dependabot[bot]
5c434d81b4 chore(deps): Bump actions/github-script from 6 to 7 (#7659) 
Bumps [actions/github-script](https://github.com/actions/github-script) from 6 to 7.
- [Release notes](https://github.com/actions/github-script/releases)
- [Commits](https://github.com/actions/github-script/compare/v6...v7)

---
updated-dependencies:
- dependency-name: actions/github-script
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2023-11-27 13:13:38 -08:00
Maribeth Bottorff
88ff901a72 chore: use prettier instead of clang-format (#7014) 
* chore: add and configure prettier

* chore: remove clang-format

* chore: remove clang-format config

* chore: lint additional ts files

* chore: fix lint errors in blocks

* chore: add prettier-ignore where needed

* chore: ignore js blocks when formatting

* chore: fix playground html syntax

* chore: fix yaml spacing from merge

* chore: convert text blocks to use arrow functions

* chore: format everything with prettier

* chore: fix lint unused imports in blocks
 2023-05-10 16:01:39 -07:00
dependabot[bot]
b0612da6f3 chore(deps): bump actions/github-script from 5 to 6 (#6085) 
Bumps [actions/github-script](https://github.com/actions/github-script) from 5 to 6.
- [Release notes](https://github.com/actions/github-script/releases)
- [Commits](https://github.com/actions/github-script/compare/v5...v6)

---
updated-dependencies:
- dependency-name: actions/github-script
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2022-04-19 09:29:29 -07:00
Christopher Allen
7ff6b93eb5 chore: Fix permissions for Assign requested reviewers workflow (#5666) 
* refactor: Inline assign_reviewers script to avoid checkout

Per https://securitylab.github.com/research/github-actions-preventing-pwn-requests/
it is not safe to do a checkout of the submitter-supplied code
AND THEN RUN IT (via require).  This is pretty bad.

We want to give this script more permissions by running it
`on: [pull_request_target]` (instead of `pull_request`); this would
give it permission to modify the PR (e.g. add comments, change
assignment).  While it would be OK to do a checkout with default
parameters (which in `pull_request_target` would check out *our*
branch rather than the submitted one) it simplest just to inline
this small script and thereby obviate the need to do a checkout at all.

* chore: Give assign_reviewers action required permissions

Changing it from `on: [pull_request]` to `on: [pull_request_review]`
will give the action write access to our repository, allowing it to
change the assignment of the PR.

This is now safe as the script does not ever check out any
submitter-supplied code.

* docs: Comment tweaks for assign_reviewers.yml
 2021-11-02 15:55:02 +00:00
alschmiedt
cfb995c073 chore: adds an action to assign reviewers from requested reviewers(#5642) 2021-10-29 15:44:33 -07:00