Add Permissions to github Workflows

Imrove GITHUB_TOKEN permissions in the workflows. Signed-off-by: Soule BA <soule@weave.works>
2022-01-20 15:20:52 +01:00 · 2022-01-20 15:20:52 +01:00 · 53fa1f9e3e
parent d1ab4d7c8e
commit 53fa1f9e3e
3 changed files with 10 additions and 0 deletions
--- a/.github/workflows/e2e.yaml
+++ b/.github/workflows/e2e.yaml
@ -6,6 +6,9 @@ on:
    branches:
      - main

+permissions:
+  contents: read # for actions/checkout to fetch code
+
 jobs:

  kind-linux-amd64:
--- a/.github/workflows/nightly.yml
+++ b/.github/workflows/nightly.yml
@ -7,6 +7,9 @@ on:
 env:
  REPOSITORY: ${{ github.repository }}

+permissions:
+  contents: read # for actions/checkout to fetch code
+
 jobs:
  build:
    runs-on: ubuntu-latest
--- a/.github/workflows/scan.yaml
+++ b/.github/workflows/scan.yaml
@ -8,6 +8,10 @@ on:
  schedule:
    - cron: '18 10 * * 3'

+permissions:
+  contents: read # for actions/checkout to fetch code
+  security-events: write # for codeQL to write security events
+
 jobs:
  fossa:
    name: FOSSA