build: harden GitHub workflow permissions
Grant pull-requests write permission to the labeler workflow and read-only to everything else. Signed-off-by: Alex Low <aleksandrosansan@gmail.com> [ wrap to 80 columns and fix wrong author as requested by author itself ] Signed-off-by: Christian Marangi <ansuelsmth@gmail.com>
This commit is contained in:
Alex Low
committed by
Christian Marangi
Christian Marangi
parent
412fcf3d44
commit
7152599407
3
.github/workflows/tools.yml
vendored
3
.github/workflows/tools.yml
vendored
@@ -6,6 +6,9 @@ on:
|
||||
- 'tools/**'
|
||||
- '.github/workflows/tools.yml'
|
||||
|
||||
permissions:
|
||||
contents: read
|
||||
|
||||
jobs:
|
||||
build:
|
||||
name: tools-${{ matrix.os }}
|
||||
|
||||
Reference in New Issue
Block a user