honeymoose
/
angular-cn
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
angular-cn/dev-infra/pr
History
Paul Gschwendtner 3ee666580a fix(dev-infra): merge script should not always require full repo permissions (#37718) 
We recently added OAuth scope checking to the dev-infra Git client
and started leveraging it for the merge script. We set the `repo` scope
as required for running the merge script. We can loosen this requirement
as in the Angular org where the script is consumed, only pull requests on
public repositories are merged through the script.

This should help with reducing the risk with compromised tokens as no
access had to be granted on `repo:invite`, `repo_deployment` etc.

PR Close #37718
 		2020-06-26 09:52:33 -07:00
..
discover-new-conflicts fix(dev-infra): support running scripts from within a detached head (#37737) 2020-06-26 09:51:09 -07:00
merge fix(dev-infra): merge script should not always require full repo permissions (#37718) 2020-06-26 09:52:33 -07:00
rebase fix(dev-infra): support running scripts from within a detached head (#37737) 2020-06-26 09:51:09 -07:00
BUILD.bazel feat(dev-infra): create rebase-pr tool in ng-dev (#37055) 2020-05-18 16:18:32 -07:00
cli.ts build: update license headers to reference Google LLC (#37205) 2020-05-26 14:26:58 -04:00