Skip to content

Commit

Permalink
[StepSecurity] Apply security best practices (#234)
Browse files Browse the repository at this point in the history
* [StepSecurity] Apply security best practices

Signed-off-by: StepSecurity Bot <bot@stepsecurity.io>

* Delete dependency-review.yml

---------

Signed-off-by: StepSecurity Bot <bot@stepsecurity.io>
Co-authored-by: Gary Gregory <garydgregory@users.noreply.github.com>
  • Loading branch information
step-security-bot and garydgregory authored Jul 21, 2023
1 parent d5da7ad commit be0da6f
Show file tree
Hide file tree
Showing 2 changed files with 4 additions and 1 deletion.
3 changes: 3 additions & 0 deletions .github/workflows/adhoctest.yml
Original file line number Diff line number Diff line change
Expand Up @@ -25,6 +25,9 @@ on:
paths:
- '**/workflows/adhoctest.yml'

permissions:
contents: read

jobs:
build:

Expand Down
2 changes: 1 addition & 1 deletion src/docker/Dockerfile
Original file line number Diff line number Diff line change
Expand Up @@ -17,7 +17,7 @@
# for Linux 64-bit and 32-bit, and Windows 64-bit and 32-bit.
# See the README for further details.

FROM ubuntu:18.04
FROM ubuntu:18.04@sha256:152dc042452c496007f07ca9127571cb9c29697f42acbfad72324b2bb2e43c98

ENV JAVA_HOME=/usr/lib/jvm/java-8-openjdk-amd64
ENV MAVEN_HOME=/opt/maven
Expand Down

0 comments on commit be0da6f

Please sign in to comment.