From bb70a71718a5b7e0aecafd523b31c0c091f9e5a8 Mon Sep 17 00:00:00 2001 From: "Dementiev, Roman" Date: Wed, 3 Jan 2024 14:12:02 +0100 Subject: [PATCH] add topLevel permissions Change-Id: I5e20384cb7df1767f322a2136677a9b92663b664 --- .github/workflows/ci-cov-report.yml | 3 +++ .github/workflows/docker.yml | 3 +++ .github/workflows/freebsd_build.yml | 3 +++ .github/workflows/freebsd_scan_build.yml | 3 +++ 4 files changed, 12 insertions(+) diff --git a/.github/workflows/ci-cov-report.yml b/.github/workflows/ci-cov-report.yml index 3af7a0f0..88e18e7a 100644 --- a/.github/workflows/ci-cov-report.yml +++ b/.github/workflows/ci-cov-report.yml @@ -2,6 +2,9 @@ name: coverity-report on: workflow_dispatch +permissions: + contents: read + jobs: linux-report: uses: intel-innersource/applications.analyzers.pcm/.github/workflows/ci-cov-linux-report.yml@main diff --git a/.github/workflows/docker.yml b/.github/workflows/docker.yml index 478f8fd8..8f28300e 100644 --- a/.github/workflows/docker.yml +++ b/.github/workflows/docker.yml @@ -5,6 +5,9 @@ on: branches: - master +permissions: + contents: read + jobs: build: runs-on: ubuntu-20.04 diff --git a/.github/workflows/freebsd_build.yml b/.github/workflows/freebsd_build.yml index ddcb3210..44c192e9 100644 --- a/.github/workflows/freebsd_build.yml +++ b/.github/workflows/freebsd_build.yml @@ -6,6 +6,9 @@ on: pull_request: branches: [ master ] +permissions: + contents: read + jobs: build: diff --git a/.github/workflows/freebsd_scan_build.yml b/.github/workflows/freebsd_scan_build.yml index 1a7dec8d..ca7dfc87 100644 --- a/.github/workflows/freebsd_scan_build.yml +++ b/.github/workflows/freebsd_scan_build.yml @@ -6,6 +6,9 @@ on: pull_request: branches: [ master ] +permissions: + contents: read + jobs: build: