From 11af82a2a02705374e571621aa59a2add8ebea13 Mon Sep 17 00:00:00 2001 From: Philipp Plank Date: Wed, 27 Mar 2024 09:28:56 -0700 Subject: [PATCH] fix workflows for openssf standard --- .github/workflows/cd.yml | 1 + .github/workflows/ci.yml | 1 + .github/workflows/issues.yml | 3 ++- 3 files changed, 4 insertions(+), 1 deletion(-) diff --git a/.github/workflows/cd.yml b/.github/workflows/cd.yml index 41f4d392..b16b8337 100644 --- a/.github/workflows/cd.yml +++ b/.github/workflows/cd.yml @@ -1,4 +1,5 @@ name: Run CD +permissions: read-all on: workflow_dispatch: diff --git a/.github/workflows/ci.yml b/.github/workflows/ci.yml index 3ceb1612..80677f12 100644 --- a/.github/workflows/ci.yml +++ b/.github/workflows/ci.yml @@ -1,4 +1,5 @@ name: Run CI +permissions: read-all on: push: branches: diff --git a/.github/workflows/issues.yml b/.github/workflows/issues.yml index 72c8c20c..896bf413 100644 --- a/.github/workflows/issues.yml +++ b/.github/workflows/issues.yml @@ -1,5 +1,5 @@ name: Add new issues to the NCL planning project and label them - +permissions: {} on: issues: types: @@ -10,6 +10,7 @@ on: jobs: add-to-project: name: Add issue to project + permissions: {} runs-on: ubuntu-latest steps: - uses: actions/add-to-project@v0.4.0