mirror of
https://github.com/ivuorinen/hiha-arvio.git
synced 2026-02-12 04:49:18 +00:00
Ismo Vuorinen
09d8be41e3
- Add least-privilege permissions to all GitHub Actions jobs - Fixes 8 CodeQL security findings (actions/missing-workflow-permissions) - Build jobs: contents:read, actions:write - Release job: contents:write, actions:read - Test job: contents:read, checks:write, actions:write - Status jobs: no permissions needed - Add wasm-tools-net8 workload installation for test workflow Follows principle of least privilege and GitHub Actions security best practices.