fix: add correct permissions

Cybertron01Z · Cybertron01Z · commit 9ce782c9cc44 · 2025-05-22T10:40:48.000+02:00
diff --git a/.github/workflows/build-and-push.yml b/.github/workflows/build-and-push.yml
@@ -2,6 +2,12 @@ name: Build and Push Docker Image
 
 on:
   workflow_call:
+    inputs:
+      push_image:
+        description: 'Whether to push the Docker image'
+        type: boolean
+        required: false
+        default: false
 
 jobs:
   build:
@@ -26,6 +32,7 @@ jobs:
         run: npm test
 
       - name: Log in to GitHub Container Registry
+        if: inputs.push_image
         uses: docker/login-action@v3
         with:
           registry: ghcr.io
@@ -39,6 +46,7 @@ jobs:
         run: npm run build:dockerImage
 
       - name: Push Docker image
+        if: inputs.push_image
         env:
           DOCKER_USERNAME: ${{ github.repository_owner }}
         run: |
diff --git a/.github/workflows/development.yml b/.github/workflows/development.yml
@@ -6,29 +6,13 @@ on:
     branches:
       - '*'
       - '!master'
-  pull_request:
+
+permissions:
+  contents: read
+  packages: write
 
 jobs:
   build:
-    runs-on: ubuntu-latest
-
-    steps:
-      - uses: actions/checkout@v3
-      - uses: actions/setup-node@v3
-        with:
-          node-version: '22'
-
-      - name: install dependencies
-        run: npm i
-
-      - name: dependency check
-        run: npm run dependencyCheck
-
-      - name: run tests
-        run: npm test
-
-      - name: build app & docker image
-        env:
-          DOCKER_REGISTRY: ghcr.io
-          DOCKER_USERNAME: ${{ github.repository_owner }}
-        run: npm run build:dockerImage
+    uses: ./.github/workflows/build-and-push.yml
+    with:
+      push_image: false
diff --git a/.github/workflows/master.yml b/.github/workflows/master.yml
@@ -9,6 +9,12 @@ on:
     tags:
       - '*'
 
+permissions:
+  contents: read
+  packages: write
+
 jobs:
   build-and-push:
     uses: ./.github/workflows/build-and-push.yml
+    with:
+      push_image: true
diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml
@@ -4,6 +4,12 @@ on:
   release:
     types: [created]
 
+permissions:
+  contents: read
+  packages: write
+
 jobs:
   build-and-push:
-    uses: ./.github/workflows/build-and-push.yml 
+    uses: ./.github/workflows/build-and-push.yml
+    with:
+      push_image: true 
