Skip to content

🌿 Fern Regeneration -- September 2, 2025 #44

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 2 commits into from
Sep 2, 2025
Merged

🌿 Fern Regeneration -- September 2, 2025 #44

merged 2 commits into from
Sep 2, 2025

Conversation

fern-api[bot]
Copy link
Contributor

@fern-api fern-api bot commented Sep 2, 2025

This PR regenerates code to match the latest API Definition.

github-advanced-security[bot]
github-advanced-security bot found potential problems Sep 2, 2025
View reviewed changes
.github/workflows/ci.yml
Comment on lines +33 to +57
needs: [ compile, test ]
if: github.event_name == 'push' && contains(github.ref, 'refs/tags/')
runs-on: ubuntu-latest
steps:
- name: Checkout repo
uses: actions/checkout@v4
- name: Set up node
uses: actions/setup-node@v3
- name: Install dependencies
run: yarn install
- name: Build
run: yarn build

- name: Publish to npm
run: |
npm config set //registry.npmjs.org/:_authToken ${NPM_TOKEN}
if [[ ${GITHUB_REF} == *alpha* ]]; then
npm publish --access public --tag alpha
elif [[ ${GITHUB_REF} == *beta* ]]; then
npm publish --access public --tag beta
else
npm publish --access public
fi
env:
NPM_TOKEN: ${{ secrets.NPM_TOKEN }}

Check warning

Code scanning / CodeQL

Workflow does not contain permissions Medium

Actions job or workflow does not limit the permissions of the GITHUB_TOKEN. Consider setting an explicit permissions block, using the following as a minimal starting point: {contents: read}

Copilot Autofix

AI 18 days ago

To fix this problem, add an explicit permissions: section to the workflow file at either the workflow root level (applies to all jobs by default) or to specific jobs. The safest minimal starting point is to set contents: read at the root, ensuring all jobs only receive read access unless overridden. If any job (e.g., publish) needs more extensive permissions (write to repository contents, pull requests, or packages), add a more specific permissions: block to that job only. In this case, since none of the jobs require write access to repository contents (NPM publish uses an NPM token, not GITHUB_TOKEN), it is safe to apply contents: read at the root. Place the following permissions block at the top of the workflow file, just under the workflow name: and before on:.

Suggested changeset 1
.github/workflows/ci.yml

Autofix patch

Autofix patch
Run the following command in your local git repository to apply this patch
cat << 'EOF' | git apply
diff --git a/.github/workflows/ci.yml b/.github/workflows/ci.yml
--- a/.github/workflows/ci.yml
+++ b/.github/workflows/ci.yml
@@ -1,4 +1,6 @@
 name: ci
+permissions:
+  contents: read
 
 on: [push]
 
EOF
@@ -1,4 +1,6 @@
name: ci
permissions:
contents: read

on: [push]

Copilot is powered by AI and may make mistakes. Always verify output.
@maticzav maticzav merged commit 47edf1c into main Sep 2, 2025
6 checks passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
1 participant
@maticzav