build: Add top-level read-only permissions to ci actions

This is recommended by ossf scorecard: https://github.com/ossf/scorecard/blob/main/docs/checks.md#token-permissions Change-Id: I48a36cc6625fa3f1e6babb9edbe81c9522f41a13 Signed-off-by: Greg Tucker <greg.b.tucker@intel.com>
2024-12-12 09:23:50 +01:00 · 2022-10-28 17:05:01 -07:00 · 2022-10-28 17:05:01 -07:00 · fec429e1b9
commit fec429e1b9
parent 1187583a97
1 changed files with 3 additions and 0 deletions
--- a/.github/workflows/ci.yml
+++ b/.github/workflows/ci.yml
@ -8,6 +8,9 @@ on:
    tags:
      - "*"

+permissions:
+  contents: read
+
 jobs:
  check_format:
    runs-on: ubuntu-latest