Yaniv Michael Kaul f047e6fd5c trigger_jenkins.yaml: add missing permissions and fix script injection ...

Add explicit empty permissions block (permissions: {}) since this
workflow only triggers Jenkins and sends Slack notifications using its
own secrets. Also move expression interpolations into env vars to
prevent potential script injection. Fixes code scanning alert #147.

Also remove the pre-existing 'permissions: contents: read' block,
which would result in duplicate YAML keys (invalid per the YAML spec).

Closes scylladb/scylladb#29186

2026-05-18 11:39:39 +03:00

..

instructions

tree: add AGENTS.md router and improve AI instruction files

2026-04-19 21:59:52 +03:00

ISSUE_TEMPLATE

.github: update bug_report.yml

2025-04-10 14:26:00 +03:00

scripts

LICENSE: Update to version 1.1

2026-04-12 19:46:33 +03:00

workflows

trigger_jenkins.yaml: add missing permissions and fix script injection

2026-05-18 11:39:39 +03:00

clang-include-cleaner.json

.github: change severity to error in clang-include-cleaner

2024-06-07 07:28:52 +08:00

clang-matcher.json

.github: rename clang-tidy-matcher.json to clang-matcher.json

2024-06-07 14:23:06 +08:00

CODEOWNERS

Fix CODEOWNERS to cover nested docs subfolders

2026-04-20 17:55:43 +03:00

copilot-instructions.md

tree: add AGENTS.md router and improve AI instruction files

2026-04-19 21:59:52 +03:00

dependabot.yml

docs: update theme 1.9

2026-03-11 16:56:51 +02:00

mergify.yml

mergify: add support for branch-6.2

2024-09-18 08:30:41 +03:00

pull_request_template.md

pull_request_template: clearify the template and remove checkbox verification

2024-05-20 18:24:28 +03:00

seastar-bad-include.json

github: improve seastar bad include check

2025-03-30 11:56:18 +03:00