CI: fix CodeQL permissions

This is needed after switching default token permissions to be restrictive by default. github/codeql#8843
canonical · Jul 24, 2024 · bb112ef · bb112ef
1 parent b13b518
commit bb112ef
Showing 1 changed file with 4 additions and 0 deletions.
diff --git a/.github/workflows/codeql-analysis.yml b/.github/workflows/codeql-analysis.yml
@@ -28,6 +28,10 @@ jobs:
   analyze:
     name: Analyze
     runs-on: ubuntu-22.04
+    permissions:
+      actions: read
+      contents: read
+      security-events: write
 
     strategy:
       fail-fast: false