chore: Set permissions for GitHub actions

Restrict the GitHub token permissions only to the required ones; this way, even if the attackers will succeed in compromising your workflow, they won’t be able to do much. - Included permissions for the action. https://github.com/ossf/scorecard/blob/main/docs/checks.md#token-permissions https://docs.github.com/en/actions/using-workflows/workflow-syntax-for-github-actions#permissions https://docs.github.com/en/actions/using-jobs/assigning-permissions-to-jobs [Keeping your GitHub Actions and workflows secure Part 1: Preventing pwn requests](https://securitylab.github.com/research/github-actions-preventing-pwn-requests/) Signed-off-by: naveen <172697+naveensrinivasan@users.noreply.github.com>
author: naveen <172697+naveensrinivasan@users.noreply.github.com> 2022-05-28 00:39:56 +0000
committer: naveen <172697+naveensrinivasan@users.noreply.github.com> 2022-05-28 00:39:56 +0000
commit: 1498de53b596ede27c1ba331779ad28c938aae1a (patch)
tree: 65365c6af26544b2949f8df2fe390fc17671bad0 /.github/workflows/pythonpackage.yml
parent: d96f671b9be24ec46f0fcd078b51e322bb8b8146 (diff)
download: gitpython-1498de53b596ede27c1ba331779ad28c938aae1a.tar.gz
1 files changed, 3 insertions, 0 deletions
diff --git a/.github/workflows/pythonpackage.yml b/.github/workflows/pythonpackage.yml
index 881f2ec5..4a8bd410 100644
--- a/.github/workflows/pythonpackage.yml
+++ b/.github/workflows/pythonpackage.yml
@@ -9,6 +9,9 @@ on:
   pull_request:
     branches: [ main ]
 
+permissions:
+  contents: read
+
 jobs:
   build:
author	naveen <172697+naveensrinivasan@users.noreply.github.com>	2022-05-28 00:39:56 +0000
committer	naveen <172697+naveensrinivasan@users.noreply.github.com>	2022-05-28 00:39:56 +0000
commit	1498de53b596ede27c1ba331779ad28c938aae1a (patch)
tree	65365c6af26544b2949f8df2fe390fc17671bad0 /.github/workflows/pythonpackage.yml
parent	d96f671b9be24ec46f0fcd078b51e322bb8b8146 (diff)
download	gitpython-1498de53b596ede27c1ba331779ad28c938aae1a.tar.gz