From 46719281db5b742329591c02af287c5d92a61a3e Mon Sep 17 00:00:00 2001
From: Alex <aleksandrosansan@gmail.com>
Date: Tue, 20 Sep 2022 12:15:20 +0200
Subject: [PATCH 1/2] build: harden linting.yml permissions Signed-off-by: Alex
 <aleksandrosansan@gmail.com>

---
 .github/workflows/linting.yml | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/.github/workflows/linting.yml b/.github/workflows/linting.yml
index 6346d959773f..b041561e9e4f 100644
--- a/.github/workflows/linting.yml
+++ b/.github/workflows/linting.yml
@@ -1,5 +1,7 @@
 name: Static Analysis
 on: [push, pull_request]
+permissions:
+  contents: read # to fetch code (actions/checkout)
 jobs:
   python-linting:
     runs-on: ubuntu-20.04

From a1d8f4898de7d5ece15122a73ff5c06f2f3edf4e Mon Sep 17 00:00:00 2001
From: Alex <aleksandrosansan@gmail.com>
Date: Tue, 20 Sep 2022 12:16:14 +0200
Subject: [PATCH 2/2] build: harden unit_tests.yml permissions Signed-off-by:
 Alex <aleksandrosansan@gmail.com>

---
 .github/workflows/unit_tests.yml | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/.github/workflows/unit_tests.yml b/.github/workflows/unit_tests.yml
index 1a8e16547f51..4ce590ffa1f4 100644
--- a/.github/workflows/unit_tests.yml
+++ b/.github/workflows/unit_tests.yml
@@ -1,5 +1,7 @@
 name: easyconfigs unit tests
 on: [push, pull_request]
+permissions:
+  contents: read # to fetch code (actions/checkout)
 jobs:
   test-suite:
     runs-on: ubuntu-20.04