Mercurial > p > roundup > code

changeset 7126:4adbf5e8589a

Find changesets by keywords (author, files, the commit message), revision number or hash, or revset expression.
Add permissions to codeql-analysis. Clear ossf-security alert about missing permission restriction.
author John Rouillard <rouilj@ieee.org>
date Mon, 23 Jan 2023 20:59:54 -0500
parents 264ddc581f4f
children 49761be4a931
files .github/workflows/codeql-analysis.yml
diffstat 1 files changed, 3 insertions(+), 0 deletions(-) [+]
line wrap: on
line diff
--- a/.github/workflows/codeql-analysis.yml	Mon Jan 23 20:28:55 2023 -0500
+++ b/.github/workflows/codeql-analysis.yml	Mon Jan 23 20:59:54 2023 -0500
@@ -25,6 +25,9 @@
   group: ${{ github.workflow }}-${{ github.ref }}
   cancel-in-progress: true
 
+permissions:
+  contents: read
+
 jobs:
   analyze:
     name: Analyze
Roundup Issue Tracker: http://roundup-tracker.org/