From 93e0b7a7f0a3add57daefc0c51c7eace7debe8ea Mon Sep 17 00:00:00 2001 From: Iustin Pop Date: Sun, 16 Apr 2023 17:19:50 +0200 Subject: [PATCH] Restrict permissions for github token --- .github/workflows/ci.yml | 4 ++++ 1 file changed, 4 insertions(+) diff --git a/.github/workflows/ci.yml b/.github/workflows/ci.yml index 03f8deb..8a01737 100644 --- a/.github/workflows/ci.yml +++ b/.github/workflows/ci.yml @@ -16,6 +16,10 @@ on: - cron: '17 03 * * 0' name: CI + +permissions: # added using https://github.com/step-security/secure-repo + contents: read + jobs: build: name: Build and test -- 2.39.5