Skip to content

Commit 434598c

Browse files
ilhan007ilhan007
authored
chore(ci): add explicit GITHUB_TOKEN permissions to workflows (#114)
Add top-level `permissions` blocks to all workflow files to follow the principle of least privilege and prepare for the upcoming default read-only GITHUB_TOKEN enforcement.
1 parent 4cf4706 commit 434598c

3 files changed

Lines changed: 12 additions & 0 deletions

File tree

.github/workflows/ci.yml

Lines changed: 4 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -6,6 +6,10 @@ on:
66
pull_request:
77
branches:
88
- main
9+
10+
permissions:
11+
contents: read
12+
913
jobs:
1014
Test-and-Build:
1115
runs-on: ubuntu-latest

.github/workflows/deploy.yml

Lines changed: 4 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -3,6 +3,10 @@ name: Deploy
33
on:
44
push:
55
branches: [ main ]
6+
7+
permissions:
8+
contents: write
9+
610
jobs:
711
deploy:
812
runs-on: ubuntu-latest

.github/workflows/lint.yml

Lines changed: 4 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -6,6 +6,10 @@ on:
66
pull_request:
77
branches:
88
- main
9+
10+
permissions:
11+
contents: read
12+
913
jobs:
1014
check:
1115
runs-on: ubuntu-latest

0 commit comments

Comments
 (0)