From 426f7db5ac6e2bb6dfb96207ff46845818507761 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Pawe=C5=82=20Wroniszewski?=
 <pawel.wroniszewski@traveltime.com>
Date: Fri, 25 Oct 2024 12:09:10 +0200
Subject: [PATCH] CI: disable persist-credentials for actions/checkout

It is a possible security issue.
We do not want to persist credentials in the repo and thus exposing those
to further steps.

References:

actions/checkout#485 (comment)
azat/chdig#67
---
 .github/workflows/ci.yml | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/.github/workflows/ci.yml b/.github/workflows/ci.yml
index 8c3e600e..de6ade35 100644
--- a/.github/workflows/ci.yml
+++ b/.github/workflows/ci.yml
@@ -25,6 +25,8 @@ jobs:
     steps:
       - name: Checkout
         uses: actions/checkout@v3
+        with:
+          persist-credentials: false
 
       - name: Set up QEMU
         uses: docker/setup-qemu-action@v2