ci: limit the permissions of GitHub Actions (#312)

Robot-Inventor · web-flow · commit a8f4bc87047e · 2025-05-04T14:12:33.000+09:00
* ci: use repository owner as reviewer

* ci: limit the permissions of GitHub Actions
diff --git a/.github/workflows/build.yml b/.github/workflows/build.yml
@@ -10,6 +10,9 @@ jobs:
     build:
         runs-on: ubuntu-latest
 
+        permissions:
+            contents: read
+
         strategy:
             matrix:
                 node-version: [23.x]
diff --git a/.github/workflows/format.yml b/.github/workflows/format.yml
@@ -10,6 +10,9 @@ jobs:
     format:
         runs-on: ubuntu-latest
 
+        permissions:
+            contents: read
+
         strategy:
             matrix:
                 node-version: [23.x]
diff --git a/.github/workflows/lint.yml b/.github/workflows/lint.yml
@@ -10,6 +10,9 @@ jobs:
     lint:
         runs-on: ubuntu-latest
 
+        permissions:
+            contents: read
+
         strategy:
             matrix:
                 node-version: [23.x]
diff --git a/.github/workflows/update-userscripts.yml b/.github/workflows/update-userscripts.yml
@@ -8,6 +8,10 @@ jobs:
     update-userscripts:
         runs-on: ubuntu-latest
 
+        permissions:
+            contents: write
+            pull-requests: write
+
         strategy:
             matrix:
                 node-version: [23.x]
