Potential fix for code scanning alert no. 2: Workflow does not contain permissions (#95)

munishchouhan · github-advanced-security[bot] · web-flow · commit 9610ff7f00d3 · 2025-06-25T13:15:22.000+02:00
* Potential fix for code scanning alert no. 2: Workflow does not contain permissions

Co-authored-by: Copilot Autofix powered by AI &lt;62310815+github-advanced-security[bot]@users.noreply.github.com&gt;

* removed package permissions

Signed-off-by: munishchouhan &lt;hrma017@gmail.com&gt;

---------

Signed-off-by: munishchouhan &lt;hrma017@gmail.com&gt;
Co-authored-by: Copilot Autofix powered by AI &lt;62310815+github-advanced-security[bot]@users.noreply.github.com&gt;
diff --git a/.github/workflows/build.yml b/.github/workflows/build.yml
@@ -1,4 +1,6 @@
 name: Wave-cli builds
+permissions:
+  contents: read
 on:
   push:
     branches:
@@ -121,6 +123,9 @@ jobs:
     if: "contains(github.event.head_commit.message, '[release]') && github.event.ref=='refs/heads/master'"
     needs: [ build ]
     runs-on: ubuntu-latest
+    permissions:
+      contents: write
+      actions: write
     steps:
       - name: Checkout repository
         uses: actions/checkout@v4
