From 8dd5ab0a9598b8660805039055c3811a5a953993 Mon Sep 17 00:00:00 2001 From: Arpit Jain Date: Fri, 15 May 2026 00:52:23 +0900 Subject: [PATCH] ci: declare minimum permissions on CodeQL workflow Signed-off-by: Arpit Jain --- .github/workflows/codeql-analysis.yml | 5 +++++ 1 file changed, 5 insertions(+) diff --git a/.github/workflows/codeql-analysis.yml b/.github/workflows/codeql-analysis.yml index 2b86702d..967e52a5 100644 --- a/.github/workflows/codeql-analysis.yml +++ b/.github/workflows/codeql-analysis.yml @@ -14,6 +14,11 @@ on: schedule: - cron: '0 12 * * 5' +permissions: + actions: read + contents: read + security-events: write + jobs: analyze: name: Analyze