From ef8e334df025f0178350b0f7326f42554626d0da Mon Sep 17 00:00:00 2001
From: Winni Neessen <winfried.neessen@cleverbridge.com>
Date: Sun, 17 Mar 2024 20:16:27 +0100
Subject: [PATCH] Add read permissions to GitHub workflows

The reuse and docker-publish workflow scripts in GitHub Actions have been updated. Now these scripts have permission to read contents. This will ensure secure access and controlled operations on repositories.
---
 .github/workflows/docker-publish.yml | 3 +++
 .github/workflows/reuse.yml          | 2 ++
 2 files changed, 5 insertions(+)

diff --git a/.github/workflows/docker-publish.yml b/.github/workflows/docker-publish.yml
index 5816721..d0b406b 100644
--- a/.github/workflows/docker-publish.yml
+++ b/.github/workflows/docker-publish.yml
@@ -19,6 +19,9 @@ on:
   pull_request:
     branches: [ main ]
 
+permissions:
+  contents: read
+
 env:
   # Use docker.io for Docker Hub if empty
   REGISTRY: ghcr.io
diff --git a/.github/workflows/reuse.yml b/.github/workflows/reuse.yml
index 0c3715b..6b2742a 100644
--- a/.github/workflows/reuse.yml
+++ b/.github/workflows/reuse.yml
@@ -3,6 +3,8 @@
 # SPDX-License-Identifier: CC0-1.0
 
 name: REUSE Compliance Check
+permissions:
+  contents: read
 
 on: [push, pull_request]