ci: add minimum GitHub token permissions for workflows (#8169)

Signed-off-by: Varun Sharma <varunsh@stepsecurity.io>
2023-11-10 05:14:29 -08:00
parent bb04915809
commit 9bdbaef105
3 changed files with 9 additions and 0 deletions
--- a/.github/workflows/docker-image-check.yml
+++ b/.github/workflows/docker-image-check.yml
@@ -5,6 +5,9 @@ on:
  schedule:
    - cron:  '30 4 * * *'

+permissions:
+  contents: read
+
 jobs:
  build:
    runs-on: ubuntu-latest