Skip to content

SECURITY.mdの追加とCIワークフローの権限を最小化#7

Merged
beatinaniwa merged 2 commits into
mainfrom
chore/security-and-ci-permissions
Mar 29, 2026
Merged

SECURITY.mdの追加とCIワークフローの権限を最小化#7
beatinaniwa merged 2 commits into
mainfrom
chore/security-and-ci-permissions

Conversation

@beatinaniwa

@beatinaniwa beatinaniwa commented Mar 29, 2026

Copy link
Copy Markdown
Owner

Summary

  • SECURITY.md を追加し、脆弱性報告の窓口とクレデンシャル取り扱いの注意事項を明記
  • ci.ymlpermissions: contents: read を追加し、最小権限の原則に準拠

Test plan

  • CIが正常に通ることを確認
  • SECURITY.md の GitHub Security Advisories リンクが機能することを確認

🤖 Generated with Claude Code

@beatinaniwa
SECURITY.mdの追加とCIワークフローの権限を最小化
a3a709c
@beatinaniwa
SECURITY.mdを削除
e6a7346 
小規模CLIツールの現段階では不要と判断。
セキュリティ報告が必要になった時点で再追加する。
@beatinaniwa beatinaniwa merged commit e5a0cec into main Mar 29, 2026
1 check passed
@beatinaniwa beatinaniwa deleted the chore/security-and-ci-permissions branch March 29, 2026 17:34
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@beatinaniwa