Potential fix for code scanning alert no. 3: Workflow does not contain permissions

MekDrop · github-advanced-security[bot] · web-flow · commit cb213d97b619 · 2025-09-01T10:27:36.000+03:00
Co-authored-by: Copilot Autofix powered by AI &lt;62310815+github-advanced-security[bot]@users.noreply.github.com&gt;
diff --git a/.github/workflows/dependabot.yml b/.github/workflows/dependabot.yml
@@ -13,6 +13,9 @@ jobs:
   merge:
     name: "Merge"
     runs-on: "ubuntu-latest"
+    permissions:
+      contents: read
+      pull-requests: write
     if: >
       github.event.workflow_run.event == 'pull_request' &&
       github.event.workflow_run.conclusion == 'success' &&
