Skip to content

Commit 5e4c06b

Browse files
Potential fix for code scanning alert no. 1: Workflow does not contain permissions
Co-authored-by: Copilot Autofix powered by AI <62310815+github-advanced-security[bot]@users.noreply.github.com> Signed-off-by: Dargon789 <64915515+Dargon789@users.noreply.github.com>
1 parent 93ce414 commit 5e4c06b

File tree

1 file changed

+6
-0
lines changed

1 file changed

+6
-0
lines changed

.github/workflows/nix.yml

Lines changed: 6 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -7,13 +7,19 @@ on:
77
workflow_dispatch:
88
# Needed so we can run it manually
99

10+
permissions:
11+
contents: read
12+
1013
concurrency:
1114
group: ${{ github.workflow }}-${{ github.ref }}
1215
cancel-in-progress: true
1316

1417
jobs:
1518
# Opens a PR with an updated flake.lock file
1619
update:
20+
permissions:
21+
contents: write
22+
pull-requests: write
1723
runs-on: ubuntu-latest
1824
steps:
1925
- uses: DeterminateSystems/determinate-nix-action@v3

0 commit comments

Comments
 (0)