ci: add permissions to current github action workflows (#45177)
The currently recommended best practice for Github action workflows is to set top-level permissions to read only. And if the job uses the automatic `GITHUB_TOKEN`, fine-grained permissions for each job based on the job's requirements should also be added. All existing workflows in the repository now have top-level read only permission blocks. Only the `scorecard` workflow currently requires additional job level permissions and the minimum set of permissions were already present for the job. PR Close #45177
Showing
- .github/workflows/dev-infra.yml 4 additions, 0 deletions.github/workflows/dev-infra.yml
- .github/workflows/feature-requests.yml 4 additions, 0 deletions.github/workflows/feature-requests.yml
- .github/workflows/lock-closed.yml 4 additions, 0 deletions.github/workflows/lock-closed.yml
- .github/workflows/scorecard.yml 2 additions, 1 deletion.github/workflows/scorecard.yml
Please register or sign in to comment