From 66f491f171bf6d9b8f2abe8fc2f5d9dd90ef9edb Mon Sep 17 00:00:00 2001
From: Darius Jahandarie <djahandarie@gmail.com>
Date: Sun, 20 Aug 2023 20:48:27 +0900
Subject: Restrict workflow permissions to satisfy OSSF Scorecard

---
 .github/workflows/auto-approve-run.yml | 1 +
 .github/workflows/auto-approve.yml     | 1 +
 2 files changed, 2 insertions(+)

(limited to '.github')

diff --git a/.github/workflows/auto-approve-run.yml b/.github/workflows/auto-approve-run.yml
index e0605a42..45c169ba 100644
--- a/.github/workflows/auto-approve-run.yml
+++ b/.github/workflows/auto-approve-run.yml
@@ -4,6 +4,7 @@ on:
     workflows: [Auto-Approve Safe PRs]
     types:
       - completed
+permissions: {}
 jobs:
   auto-approve-run:
     runs-on: ubuntu-latest
diff --git a/.github/workflows/auto-approve.yml b/.github/workflows/auto-approve.yml
index 5dd3831d..250903fc 100644
--- a/.github/workflows/auto-approve.yml
+++ b/.github/workflows/auto-approve.yml
@@ -1,5 +1,6 @@
 name: Auto-Approve Safe PRs
 on: pull_request
+permissions: {}
 jobs:
   auto-approve:
     runs-on: ubuntu-latest
-- 
cgit v1.2.3