Add read permissions to GitHub workflow files

This commit adds read permissions for 'contents' in the GitHub workflow files sonarqube.yml and reuse.yml. This allows these specific workflows to access the relevant contents they need for execution.
This commit is contained in:
Winni Neessen 2024-03-23 15:49:03 +01:00
parent 976adc5be9
commit c78388a2cb
Signed by: wneessen
GPG key ID: 5F3AF39B820C119D
2 changed files with 7 additions and 0 deletions

View file

@ -6,6 +6,9 @@ name: REUSE Compliance Check
on: [push, pull_request]
permissions:
contents: read
jobs:
test:
runs-on: ubuntu-latest

View file

@ -3,6 +3,10 @@
# SPDX-License-Identifier: CC0-1.0
name: SonarQube
permissions:
contents: read
on:
push:
branches: