From 739cf20efc25950920f7c9e73f03870bc53a8c43 Mon Sep 17 00:00:00 2001 From: Ismo Vuorinen Date: Tue, 30 Sep 2025 22:52:48 +0300 Subject: [PATCH] fix(ci): codeql reported problems --- .github/workflows/ci.yml | 6 ++++++ .github/workflows/release.yml | 6 ++++++ 2 files changed, 12 insertions(+) diff --git a/.github/workflows/ci.yml b/.github/workflows/ci.yml index d5cc878..f2e5343 100644 --- a/.github/workflows/ci.yml +++ b/.github/workflows/ci.yml @@ -11,6 +11,8 @@ jobs: lint: name: Lint & Auto-fix runs-on: ubuntu-latest + permissions: + contents: write steps: - name: Checkout code uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0 @@ -40,6 +42,8 @@ jobs: name: Test runs-on: ubuntu-latest needs: lint + permissions: + contents: read steps: - name: Checkout code uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0 @@ -69,6 +73,8 @@ jobs: name: Build runs-on: ubuntu-latest needs: lint + permissions: + contents: read steps: - name: Checkout code uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0 diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml index 9a94f9d..a7d078c 100644 --- a/.github/workflows/release.yml +++ b/.github/workflows/release.yml @@ -11,6 +11,8 @@ jobs: lint: name: Lint runs-on: ubuntu-latest + permissions: + contents: read steps: - name: Checkout code uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0 @@ -31,6 +33,8 @@ jobs: name: Test runs-on: ubuntu-latest needs: lint + permissions: + contents: read steps: - name: Checkout code uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0 @@ -58,6 +62,8 @@ jobs: name: Build runs-on: ubuntu-latest needs: lint + permissions: + contents: read steps: - name: Checkout code uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0