From 157b094854b00da58b76e8c02d062b5b7eb1057c Mon Sep 17 00:00:00 2001 From: Winford Date: Fri, 23 May 2025 17:28:35 +0000 Subject: [PATCH] Tighten up workflow permissions Address workflow permission security weakness by restriction workflow to only the necessary "read" permission. Signed-off-by: Winford --- .github/workflows/build-and-test.yaml | 2 ++ 1 file changed, 2 insertions(+) diff --git a/.github/workflows/build-and-test.yaml b/.github/workflows/build-and-test.yaml index b94118c..3b2d918 100644 --- a/.github/workflows/build-and-test.yaml +++ b/.github/workflows/build-and-test.yaml @@ -14,6 +14,8 @@ jobs: strategy: matrix: otp: ["25", "26", "27"] + permissions: + contents: read steps: # Setup