patch 9.0.0593: CI actions have too many permissions

Problem: CI actions have too many permissions. Solution: Restrict permissions to what is required. (closes #11223)
2022-09-26 15:52:46 +01:00
parent 838b746cce
commit 311df6bb0f
4 changed files with 15 additions and 0 deletions
--- a/.github/workflows/coverity.yml
+++ b/.github/workflows/coverity.yml
@ -4,6 +4,9 @@ on:
    - cron: '42 0 * * *'  # Run once per day, to avoid Coverity's submission limits
  workflow_dispatch:

+permissions:
+  contents: read # to fetch code (actions/checkout)
+
 jobs:
  scan:
    runs-on: ubuntu-20.04