Merge pull request #18545 from gaganhr94/fix/token-permissions

fix: adding required permissions to top level and jobs in the workflow
2026-06-09 08:32:26 -04:00 · 2026-04-20 10:12:01 +02:00 · 2026-04-20 10:12:01 +02:00 · de717d30c2
commit de717d30c2
parent f39fff9691 bfcaa44c2c
1 changed files with 2 additions and 3 deletions
--- a/.github/workflows/codeql-analysis.yml
+++ b/.github/workflows/codeql-analysis.yml
@ -6,15 +6,14 @@ on:
  schedule:
    - cron: "26 14 * * 1"

-permissions:
-  contents: read
-  security-events: write
+permissions: {}

 jobs:
  analyze:
    name: Analyze
    runs-on: ubuntu-latest
    permissions:
+      contents: read
      security-events: write

    strategy: