From c6ebb27965e5a92415bf435d53de32de33e7ec86 Mon Sep 17 00:00:00 2001 From: Mikkel Kjeldsen Date: Sat, 23 Sep 2023 15:00:14 +0200 Subject: [PATCH] ci: constrain GITHUB_TOKEN permissions References: https://github.com/actions/checkout/issues/485 --- .github/workflows/ci.yml | 3 +++ .github/workflows/release.yml | 3 +++ 2 files changed, 6 insertions(+) diff --git a/.github/workflows/ci.yml b/.github/workflows/ci.yml index 0c947d3..715be56 100644 --- a/.github/workflows/ci.yml +++ b/.github/workflows/ci.yml @@ -5,6 +5,9 @@ on: branches: - master +permissions: + contents: write + jobs: test: name: test diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml index 118503d..b4d96be 100644 --- a/.github/workflows/release.yml +++ b/.github/workflows/release.yml @@ -5,6 +5,9 @@ on: tags: - '*' +permissions: + contents: write + jobs: build-package: