Declare permissions

Repositories can be configured with Default access (restricted) https://docs.github.com/en/actions/security-guides/automatic-token-authentication#permissions-for-the-github_token Best practice says that workflows should declare the minimal permissions they require. Without declaring permissions, paranoid forks fail miserably.
2026-04-30 03:05:15 +02:00 · 2024-01-31 03:31:54 -05:00
parent e468f4062f
commit b58c856756
29 changed files with 97 additions and 5 deletions
--- a/.github/workflows/check-implicit-this.yml
+++ b/.github/workflows/check-implicit-this.yml
@@ -9,6 +9,9 @@ on:
      - main
      - "rc/*"

+permissions:
+  contents: read
+
 jobs:
  check:
    runs-on: ubuntu-latest