-
Notifications
You must be signed in to change notification settings - Fork 648
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Set explicit Docker permissions #997
Conversation
5f3c554
to
4263690
Compare
# For: `permissions: packages: write`. | ||
allow-dirty = ["ci"] |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Do they not support this? Do we lose all the safety guarantees of release won't run if the generated workflow is modified?
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
No, yes. Please bear with me, there was a lot of discussion about this in the Axo Discord, I am trying to understand GitHub's permission model. We should not be publishing from a build step (we should be publishing from a publish step), but GitHub doesn't seem to allow us to build a multi-platform image and publish it in a separate step. I spent time trying to figure it out earlier this week.
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
(To be clear, I'm testing off this branch, so I'm hoping I won't have to merge this. If I do, it will be temporary as I'll ask Axo team for help.)
fad87ba
to
049c9c6
Compare
3c83e3a
to
55d65df
Compare
55d65df
to
2fb9bcd
Compare
2fb9bcd
to
74d1c70
Compare
Okay, merging this for now while I work with the Axo team to remove it. |
No description provided.