From 66f491f171bf6d9b8f2abe8fc2f5d9dd90ef9edb Mon Sep 17 00:00:00 2001 From: Darius Jahandarie Date: Sun, 20 Aug 2023 20:48:27 +0900 Subject: Restrict workflow permissions to satisfy OSSF Scorecard --- .github/workflows/auto-approve-run.yml | 1 + .github/workflows/auto-approve.yml | 1 + 2 files changed, 2 insertions(+) diff --git a/.github/workflows/auto-approve-run.yml b/.github/workflows/auto-approve-run.yml index e0605a42..45c169ba 100644 --- a/.github/workflows/auto-approve-run.yml +++ b/.github/workflows/auto-approve-run.yml @@ -4,6 +4,7 @@ on: workflows: [Auto-Approve Safe PRs] types: - completed +permissions: {} jobs: auto-approve-run: runs-on: ubuntu-latest diff --git a/.github/workflows/auto-approve.yml b/.github/workflows/auto-approve.yml index 5dd3831d..250903fc 100644 --- a/.github/workflows/auto-approve.yml +++ b/.github/workflows/auto-approve.yml @@ -1,5 +1,6 @@ name: Auto-Approve Safe PRs on: pull_request +permissions: {} jobs: auto-approve: runs-on: ubuntu-latest -- cgit v1.2.3