Set read-all permission to GITHUB_TOKEN for CI jobs

9e3ce3f3 · Frédéric Guillot · a98e479e · 9e3ce3f3 · 9e3ce3f3 · 9e3ce3f3
Commit 9e3ce3f3 authored 3 years ago by Frédéric Guillot
--- a/.github/workflows/ci.yml
+++ b/.github/workflows/ci.yml
 name: CI Workflow
+permissions: read-all
+
 on:
  pull_request:
    branches:

--- a/.github/workflows/codeql-analysis.yml
+++ b/.github/workflows/codeql-analysis.yml
@@ -11,6 +11,8 @@
 #
 name: "CodeQL"

+permissions: read-all
+
 on:
  push:
    branches: [ master ]

--- a/.github/workflows/docker.yml
+++ b/.github/workflows/docker.yml
 name: Docker
+permissions: read-all
 on:
  schedule:
    - cron: '0 1 * * *'

--- a/.github/workflows/linters.yml
+++ b/.github/workflows/linters.yml
 name: Linters
+permissions: read-all
+
 on:
  pull_request:
    branches: