Skip to content

Commit

Permalink
Minimize permissions to CI workflows
Browse files Browse the repository at this point in the history 
Set only read permission on CI workflows since they don't need write access.
  • Loading branch information
@sywhang
sywhang committed Mar 20, 2023
1 parent 384e782 commit de86be9
Show file tree
Hide file tree
Showing 2 changed files with 7 additions and 1 deletion.
3 changes: 3 additions & 0 deletions .github/workflows/fossa.yaml
View file
Original file line number Diff line number Diff line change
@@ -1,6 +1,9 @@
name: FOSSA Analysis
on: push

permissions:
contents: read

jobs:

build:
Expand Down
5 changes: 4 additions & 1 deletion .github/workflows/go.yml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -7,6 +7,9 @@ on:
pull_request:
branches: ['*']

permissions:
contents: read

jobs:

build:
Expand Down Expand Up @@ -48,4 +51,4 @@ jobs:

- name: vulncheck
if: matrix.latest
run: make vulncheck
run: make vulncheck

0 comments on commit de86be9

Please sign in to comment.