From 82e920983b53f9f7e278bb510eafc3115bad0442 Mon Sep 17 00:00:00 2001 From: Jon Gjengset Date: Sat, 11 Mar 2023 15:08:45 -0800 Subject: [PATCH] Minimal token permissions See https://github.com/tokio-rs/tokio/pull/5072 --- .github/workflows/check.yml | 5 +++++ .github/workflows/nostd.yml | 2 ++ .github/workflows/safety.yml | 2 ++ .github/workflows/scheduled.yml | 2 ++ .github/workflows/test.yml | 2 ++ 5 files changed, 13 insertions(+) diff --git a/.github/workflows/check.yml b/.github/workflows/check.yml index 29fc888..406ba9b 100644 --- a/.github/workflows/check.yml +++ b/.github/workflows/check.yml @@ -1,3 +1,5 @@ +permissions: + contents: read on: push: branches: [main] @@ -20,6 +22,9 @@ jobs: clippy: runs-on: ubuntu-latest name: ${{ matrix.toolchain }} / clippy + permissions: + contents: read + checks: write strategy: fail-fast: false matrix: diff --git a/.github/workflows/nostd.yml b/.github/workflows/nostd.yml index 397a2da..7efae0f 100644 --- a/.github/workflows/nostd.yml +++ b/.github/workflows/nostd.yml @@ -1,3 +1,5 @@ +permissions: + contents: read on: push: branches: [main] diff --git a/.github/workflows/safety.yml b/.github/workflows/safety.yml index 6c973c0..4fa7ad7 100644 --- a/.github/workflows/safety.yml +++ b/.github/workflows/safety.yml @@ -1,3 +1,5 @@ +permissions: + contents: read on: push: branches: [main] diff --git a/.github/workflows/scheduled.yml b/.github/workflows/scheduled.yml index 2c15695..0215432 100644 --- a/.github/workflows/scheduled.yml +++ b/.github/workflows/scheduled.yml @@ -1,3 +1,5 @@ +permissions: + contents: read on: push: branches: [main] diff --git a/.github/workflows/test.yml b/.github/workflows/test.yml index 4435fd7..8aa4488 100644 --- a/.github/workflows/test.yml +++ b/.github/workflows/test.yml @@ -1,3 +1,5 @@ +permissions: + contents: read on: push: branches: [main]