mirror of
https://github.com/ivuorinen/hiha-arvio.git
synced 2026-02-12 05:49:05 +00:00
Ismo Vuorinen
76b48f1ef7
- Add least-privilege permissions to all GitHub Actions jobs - Fixes 8 CodeQL security findings (actions/missing-workflow-permissions) - Build jobs: contents:read, actions:write - Release job: contents:write, actions:read - Test job: contents:read, checks:write, actions:write - Status jobs: no permissions needed Follows principle of least privilege and GitHub Actions security best practices.