From f0f28b9b7c0084346fdfc0a3709dfc3aeca35cc1 Mon Sep 17 00:00:00 2001 From: vibhutikumar <160819926+vibhutikumar07@users.noreply.github.com> Date: Tue, 5 May 2026 13:33:33 +0530 Subject: [PATCH 1/3] added permission to clone the repo --- .github/workflows/blackduck.yml | 1 + 1 file changed, 1 insertion(+) diff --git a/.github/workflows/blackduck.yml b/.github/workflows/blackduck.yml index e2557c155..669bddd62 100644 --- a/.github/workflows/blackduck.yml +++ b/.github/workflows/blackduck.yml @@ -11,6 +11,7 @@ on: workflow_dispatch: permissions: + contents: read # allows workflow to checkout private repository pull-requests: read # allows SonarQube to decorate PRs with analysis results jobs: From 0609e4925c1fe28043319de0ea27e1727a7e5058 Mon Sep 17 00:00:00 2001 From: vibhutikumar <160819926+vibhutikumar07@users.noreply.github.com> Date: Tue, 5 May 2026 14:01:16 +0530 Subject: [PATCH 2/3] added permission to clone the repo --- .github/workflows/sonarqube.yml | 1 + .github/workflows/unit.tests.yml | 1 + 2 files changed, 2 insertions(+) diff --git a/.github/workflows/sonarqube.yml b/.github/workflows/sonarqube.yml index e760c307e..34a81c705 100644 --- a/.github/workflows/sonarqube.yml +++ b/.github/workflows/sonarqube.yml @@ -11,6 +11,7 @@ on: workflow_dispatch: permissions: + contents: read # allows workflow to checkout private repository pull-requests: read # Allows SonarQube to decorate PRs with analysis results jobs: diff --git a/.github/workflows/unit.tests.yml b/.github/workflows/unit.tests.yml index bda421a7a..646934c67 100644 --- a/.github/workflows/unit.tests.yml +++ b/.github/workflows/unit.tests.yml @@ -8,6 +8,7 @@ on: types: [opened, synchronize, reopened, auto_merge_enabled] workflow_dispatch: permissions: + contents: read # allows workflow to checkout private repository pull-requests: read jobs: From 9b014135c47035233cd2d07eb68c751ec6ca66b1 Mon Sep 17 00:00:00 2001 From: vibhutikumar <160819926+vibhutikumar07@users.noreply.github.com> Date: Tue, 5 May 2026 14:25:32 +0530 Subject: [PATCH 3/3] added a merge rule for test-summary step --- .github/workflows/multiTenant_deploy_and_Integration_test.yml | 3 ++- 1 file changed, 2 insertions(+), 1 deletion(-) diff --git a/.github/workflows/multiTenant_deploy_and_Integration_test.yml b/.github/workflows/multiTenant_deploy_and_Integration_test.yml index 764655443..d658af729 100644 --- a/.github/workflows/multiTenant_deploy_and_Integration_test.yml +++ b/.github/workflows/multiTenant_deploy_and_Integration_test.yml @@ -9,6 +9,7 @@ on: workflow_dispatch: permissions: + contents: read pull-requests: read packages: read # Added permission to read packages @@ -317,7 +318,7 @@ jobs: test-summary: runs-on: ubuntu-latest needs: integration-test - if: always() + if: always() && github.event.pull_request.merged == true steps: - name: Check test results 📋 run: |