fix: read permissions only on actions

fuzzzerd · May 7, 2024 · eaf8fac · eaf8fac
1 parent d0153b5
commit eaf8fac
Show file tree

Hide file tree

Showing 3 changed files with 6 additions and 0 deletions.
diff --git a/.github/workflows/codeql-analysis.yml b/.github/workflows/codeql-analysis.yml
@@ -8,6 +8,8 @@ on:   # yamllint disable-line rule:truthy
     # The branches below must be a subset of the branches above
     branches: [master]
 
+permissions: read-all
+
 jobs:
   analyze:
     name: Analyze

diff --git a/.github/workflows/dotnet.yml b/.github/workflows/dotnet.yml
@@ -11,6 +11,8 @@ on:   # yamllint disable-line rule:truthy
     branches:
       - master
 
+permissions: read-all
+
 env:
   DOTNET_NOLOGO: true
   DOTNET_SKIP_FIRST_TIME_EXPERIENCE: true

diff --git a/.github/workflows/linter.yml b/.github/workflows/linter.yml
@@ -12,6 +12,8 @@ name: Lint Code Base
 on:   # yamllint disable-line rule:truthy
   pull_request:
 
+permissions: read-all
+
 ###############
 # Set the Job #
 ###############