Unverified Commit a562f8cc authored by Kroese's avatar Kroese Committed by GitHub
Browse files

build: Implement user permission checks in review workflow (#971)

parent 5bd9c9ee

.github/workflows/review.yml

+22 −5
Original line number Diff line number Diff line
@@ -14,8 +14,27 @@ jobs: 
    runs-on: ubuntu-latest

    steps:

      - 

        name: Checkout

        name: Get User Permission

        id: checkAccess

        uses: actions-cool/check-user-permission@v2

        with:

          require: write

          username: ${{ github.triggering_actor }}

        env:

          GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}

      - 

        name: Check User Permission

        if: steps.checkAccess.outputs.require-result == 'false'

        run: |

          echo "${{ github.triggering_actor }} does not have permissions on this repo."

          echo "Current permission level is ${{ steps.checkAccess.outputs.user-permission }}"

          echo "Job originally triggered by ${{ github.actor }}"

          exit 1

      - 

        name: Checkout code

        uses: actions/checkout@v5

        with:

          ref: ${{ github.event.pull_request.head.sha }}

      - 

        name: Spelling

        uses: reviewdog/action-misspell@v1
@@ -27,8 +46,6 @@ jobs: 
            *.sh

          reporter: github-pr-review

          github_token: ${{ secrets.REPO_ACCESS_TOKEN }}

        env:

          REVIEWDOG_GITHUB_API_TOKEN: ${{ secrets.REPO_ACCESS_TOKEN }}

      -

        name: Hadolint

        uses: reviewdog/action-hadolint@v1