Skip to content

Restrict GITHUB_TOKEN permissions in CI workflows#2380

Merged
Mab879 merged 1 commit into
OpenSCAP:maint-1.3from
jan-cerny:permissions_maint-1.3
Jul 8, 2026
Merged

Restrict GITHUB_TOKEN permissions in CI workflows#2380
Mab879 merged 1 commit into
OpenSCAP:maint-1.3from
jan-cerny:permissions_maint-1.3

Conversation

@jan-cerny

Copy link
Copy Markdown
Member

Add explicit read-only permissions to reduce the risk of supply chain attacks exploiting an overly privileged workflow token.

Add explicit read-only permissions to reduce the risk of supply chain
attacks exploiting an overly privileged workflow token.
@sonarqubecloud

sonarqubecloud Bot commented Jul 8, 2026

Copy link
Copy Markdown

@Mab879 Mab879 merged commit a3ea576 into OpenSCAP:maint-1.3 Jul 8, 2026
11 checks passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

None yet

Projects

None yet

Development

Successfully merging this pull request may close these issues.

2 participants