Remove some of the excessive permissions granted and fix the issue #3361

[HouqiyuA]

Thanks for contributing!

What type of PR is this?

What this PR does / why we need it:
Remove some of the excessive permissions granted and fix the issue
Which issue(s) this PR fixes:
#3361

Fixes #3361#

Special notes for your reviewer:

[cyclinder]

Hi @HouqiyuA Thanks for the PR! It looks like something is broken while you remove the permissions, Are you able to fix the CI failure? thank you so much for your attention and participation.

[HouqiyuA]

Sorry！I noticed that someone seems to be working on fixing this problem, and I can't continue fixing it, not being very good at raising PR.By the way,Can spiderpool team reward our team after fixiing this problem? For example, apply for a CVE ID to our team for this problem or other ways? Cyclinder ***@***.***>于2024年5月1日 周三22:26写道：

…

Hi @HouqiyuA <https://github.com/HouqiyuA> Thanks for the PR! It looks like something is broken while you remove the permissions, Are you able to fix the CI failure? thank you so much for your attention and participation. — Reply to this email directly, view it on GitHub <#3446 (comment)>, or unsubscribe <https://github.com/notifications/unsubscribe-auth/BBBY3LVIAESTGBU54QIFUWDZAD3PZAVCNFSM6AAAAABHAORG56VHI2DSMVQWIX3LMV43OSLTON2WKQ3PNVWWK3TUHMZDAOBYGU2DENRSGE> . You are receiving this because you were mentioned.Message ID: ***@***.***>

[cyclinder]

I will close it if you don't want to keep working on this issue. @kaaass want to work on this.

Can spiderpool team reward our team after fixiing this problem? For
example, apply for a CVE ID to our team for this problem or other ways?

Sure, but I don't know how to apply for a CVE ID.

[kaaass]

Sure, but I don't know how to apply for a CVE ID.

@cyclinder I can help this! I had DM you in Slack.