From 984c740cc0870468365aad9e14bc5a46b0cfca35 Mon Sep 17 00:00:00 2001
From: Dan Yeaw <dan@yeaw.me>
Date: Mon, 2 May 2022 21:11:54 -0400
Subject: [PATCH 1/2] Add permissions to README

Closes #57 and #58. Permissions based on https://app.stepsecurity.io/.
---
 README.md | 5 +++++
 1 file changed, 5 insertions(+)

diff --git a/README.md b/README.md
index ada93a84..e0990c22 100644
--- a/README.md
+++ b/README.md
@@ -15,8 +15,13 @@ on:
   pull_request:
     types: [opened]
 
+permissions:
+  contents: read
+
 jobs:
   pr-labeler:
+    permissions:
+      pull-requests: write  # for TimonVS/pr-labeler-action to add labels in PR
     runs-on: ubuntu-latest
     steps:
       - uses: TimonVS/pr-labeler-action@v3

From 8a69b8c9dca3144f15336be0b1e18d3031c73880 Mon Sep 17 00:00:00 2001
From: Timon van Spronsen <timonvanspronsen@outlook.com>
Date: Tue, 15 Nov 2022 21:17:29 +0100
Subject: [PATCH 2/2] Add contents permission to job permissions

---
 README.md | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/README.md b/README.md
index e0990c22..8137dd90 100644
--- a/README.md
+++ b/README.md
@@ -21,7 +21,8 @@ permissions:
 jobs:
   pr-labeler:
     permissions:
-      pull-requests: write  # for TimonVS/pr-labeler-action to add labels in PR
+      contents: read # for TimonVS/pr-labeler-action to read config file
+      pull-requests: write # for TimonVS/pr-labeler-action to add labels in PR
     runs-on: ubuntu-latest
     steps:
       - uses: TimonVS/pr-labeler-action@v3