From 21d59e060cfa756f3d5997d98bb6a5d78a512ec4 Mon Sep 17 00:00:00 2001
From: Step Security <bot@stepsecurity.io>
Date: Fri, 15 Nov 2024 12:03:14 +0000
Subject: [PATCH] Restrict permissions for the GITHUB_TOKEN in
 .github/workflows/clang-tidy.yaml

---
 .github/workflows/clang-tidy.yaml | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/.github/workflows/clang-tidy.yaml b/.github/workflows/clang-tidy.yaml
index 2f64169ce3..2b00d8dcdf 100644
--- a/.github/workflows/clang-tidy.yaml
+++ b/.github/workflows/clang-tidy.yaml
@@ -8,6 +8,8 @@ on:
 
 jobs:
   clang-tidy:
+    permissions:
+      contents: read
     runs-on: ubuntu-24.04
     steps:
       - uses: actions/checkout@v4