mirror of
https://github.com/github/codeql.git
synced 2026-01-07 11:40:27 +01:00
b58c856756
Repositories can be configured with Default access (restricted) https://docs.github.com/en/actions/security-guides/automatic-token-authentication#permissions-for-the-github_token Best practice says that workflows should declare the minimal permissions they require. Without declaring permissions, paranoid forks fail miserably.
34 lines
888 B
YAML
34 lines
888 B
YAML
name: Mark stale issues
|
|
|
|
on:
|
|
workflow_dispatch:
|
|
schedule:
|
|
- cron: "30 1 * * *"
|
|
|
|
permissions:
|
|
issues: write
|
|
|
|
jobs:
|
|
stale:
|
|
if: github.repository == 'github/codeql'
|
|
|
|
runs-on: ubuntu-latest
|
|
|
|
steps:
|
|
- uses: actions/stale@v9
|
|
with:
|
|
repo-token: ${{ secrets.GITHUB_TOKEN }}
|
|
stale-issue-message: 'This issue is stale because it has been open 14 days with no activity. Comment or remove the `Stale` label in order to avoid having this issue closed in 7 days.'
|
|
close-issue-message: 'This issue was closed because it has been inactive for 7 days.'
|
|
days-before-stale: 14
|
|
days-before-close: 7
|
|
only-labels: awaiting-response
|
|
|
|
# do not mark PRs as stale
|
|
days-before-pr-stale: -1
|
|
days-before-pr-close: -1
|
|
|
|
# Uncomment for dry-run
|
|
# debug-only: true
|
|
# operations-per-run: 1000
|