From eb7aa514e036bce19af42bd043fac7d7c6668c06 Mon Sep 17 00:00:00 2001
From: Ruoyu Zhong <zhongruoyu@outlook.com>
Date: Sun, 15 Dec 2024 18:32:25 +0800
Subject: [PATCH 1/2] workflows/scheduled: fix artipacked zizmor findings

We don't need persistent credentials here.
---
 .github/workflows/scheduled.yml | 1 +
 1 file changed, 1 insertion(+)

diff --git a/.github/workflows/scheduled.yml b/.github/workflows/scheduled.yml
index 9032f2cc..f5251238 100644
--- a/.github/workflows/scheduled.yml
+++ b/.github/workflows/scheduled.yml
@@ -25,6 +25,7 @@ jobs:
         uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
         with:
           fetch-depth: 0
+          persist-credentials: false
           ref: ${{ github.event.pull_request.head.sha }}
 
       - name: Set up Homebrew

From 931463a0fed7f0d2ad108dbde8007337e870e11d Mon Sep 17 00:00:00 2001
From: Ruoyu Zhong <zhongruoyu@outlook.com>
Date: Sun, 15 Dec 2024 18:32:29 +0800
Subject: [PATCH 2/2] workflows/tests: fix artipacked zizmor findings

We don't need persistent credentials here.
---
 .github/workflows/tests.yml | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/.github/workflows/tests.yml b/.github/workflows/tests.yml
index 33ee4ca6..84881fff 100644
--- a/.github/workflows/tests.yml
+++ b/.github/workflows/tests.yml
@@ -15,6 +15,8 @@ jobs:
     steps:
       - name: Set up Git repository
         uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
+        with:
+          persist-credentials: false
 
       - name: Set up Homebrew
         id: set-up-homebrew