Skip to content

CodeQL reports missing permissions declarations in workflows #891

New issue
New issue
Closed
Closed
CodeQL reports missing permissions declarations in workflows#891
Assignees
mhucka
Labels
area/ciInvolves continuous integration workflows and infrastructurearea/healthInvolves general matters of project configuration, health, maintenance, and similar concernskind/bug-reportSomething doesn't seem to workpriority/p1High priority
@mhucka

Description

@mhucka
mhucka
opened on Aug 30, 2025

CodeQL security scans are flagging the workflows for lack of permissions declarations. Here's a sample warning:

Actions job or workflow does not limit the permissions of the GITHUB_TOKEN. Consider setting an explicit permissions block

This concerns all of the current workflow files in .github/workflows/.

Metadata

Metadata

Assignees

Labels

area/ciInvolves continuous integration workflows and infrastructurearea/healthInvolves general matters of project configuration, health, maintenance, and similar concernskind/bug-reportSomething doesn't seem to workpriority/p1High priority

Type

No type

Projects

No projects

Milestone

No milestone

Relationships

None yet

Development

No branches or pull requests

Issue actions