Merge pull request #2279 from dalehenries/token-permissions

ci: token permissions - security slam task 16

Author: k8s-ci-robot

.github/workflows/govulncheck.yml

@@ -8,6 +8,9 @@ on:
 env:
   GO_VERSION: "^1.21"
 
+permissions:
+  contents: read
+
 jobs:
   ci-security-checks:
     runs-on: ubuntu-latest

.github/workflows/semantic.yml

@@ -7,8 +7,14 @@ on:
       - edited
       - synchronize
 
+permissions:
+  contents: read
+
 jobs:
   main:
+    permissions:
+      pull-requests: read  # for amannn/action-semantic-pull-request to analyze PRs
+      statuses: write  # for amannn/action-semantic-pull-request to mark status of analyzed PR
     name: Validate PR title for semantic commit message
     runs-on: ubuntu-latest
     steps: