Improve github action security

See https://docs.github.com/en/actions/writing-workflows/choosing-what-your-workflow-does/controlling-permissions-for-github_token
2024-10-31 07:05:35 +01:00 · 2024-10-31 07:05:35 +01:00 · 339623a469
commit 339623a469
parent c73c27412c
6 changed files with 12 additions and 0 deletions
--- a/.github/workflows/benchmark.yml
+++ b/.github/workflows/benchmark.yml
@ -1,5 +1,7 @@
 name: Benchmark

+permissions: {}
+
 on:
  push:
    branches:
--- a/.github/workflows/codeql.yml
+++ b/.github/workflows/codeql.yml
@ -11,6 +11,8 @@
 #
 name: "CodeQL"

+permissions: {}
+
 on:
  push:
    branches: [ develop, next ]
--- a/.github/workflows/docker.yml
+++ b/.github/workflows/docker.yml
@ -1,5 +1,7 @@
 name: Docker

+permissions: {}
+
 on:
  push:
    branches:
--- a/.github/workflows/nightly.yml
+++ b/.github/workflows/nightly.yml
@ -1,5 +1,7 @@
 name: Nightly

+permissions: {}
+
 on:
  schedule:
    - cron: '0 3 * * *'
--- a/.github/workflows/stats.yml
+++ b/.github/workflows/stats.yml
@ -1,5 +1,7 @@
 name: Stats

+permissions: {}
+
 on:
  push:
    branches:
--- a/.github/workflows/test.yml
+++ b/.github/workflows/test.yml
@ -1,5 +1,7 @@
 name: Test

+permissions: {}
+
 on:
  push:
  pull_request: