Skip to content

Fix workflow permissions for security scan#77

Merged
huseyinbabal merged 1 commit intomasterfrom
fix/workflow-permissions
Jan 14, 2026
Merged

Fix workflow permissions for security scan#77
huseyinbabal merged 1 commit intomasterfrom
fix/workflow-permissions

Conversation

@huseyinbabal
Copy link
Owner

@huseyinbabal huseyinbabal commented Jan 14, 2026

Summary

Fix the GitHub Actions workflow error:

The nested job 'security-scan' is requesting 'actions: read, security-events: write', 
but is only allowed 'actions: none, security-events: none'.

Solution

Add required permissions at the workflow level:

permissions:
  contents: read
  actions: read
  security-events: write

This allows the reusable workflow's security-scan job to:

  • Read actions metadata (actions: read)
  • Write security scan results to the Security tab (security-events: write)

Type of Change

  • Bug fix (non-breaking change that fixes an issue)

@huseyinbabal
Fix workflow permissions for security scan
451c8c7 
Add required permissions for the reusable workflow's security-scan job:
- actions: read
- security-events: write
@huseyinbabal huseyinbabal merged commit 2dbc849 into master Jan 14, 2026
0 of 3 checks passed
@huseyinbabal huseyinbabal deleted the fix/workflow-permissions branch January 14, 2026 22:58
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@huseyinbabal