Potential fix for code scanning alert no. 1: Workflow does not contain permissions

chyroc · github-advanced-security[bot] · web-flow · commit 351165f8632a · 2025-09-03T10:50:22.000+08:00
Co-authored-by: Copilot Autofix powered by AI &lt;62310815+github-advanced-security[bot]@users.noreply.github.com&gt;
diff --git a/.github/workflows/pypi-release.yml b/.github/workflows/pypi-release.yml
@@ -1,4 +1,6 @@
 name: Publish to PyPI
+permissions:
+  contents: read
 on:
   push:
     tags: ["v*.*.*"]
