github: Add necessery permissions for CodeQL #14010

serathius · 2022-05-05T08:08:24Z

ahrtr · 2022-05-05T08:16:50Z

.github/workflows/codeql-analysis.yml

+    permissions:
+      actions: read
+      contents: read
+      security-events: write


nit: actions and contents are only required for private repository.

See the Usage section in https://github.com/github/codeql-action

I think permissions should reflect whole set of permissions required, even those that are given by default in certain environments.

github: Add necessery permissions for CodeQL

9684027

ahrtr approved these changes May 5, 2022

View reviewed changes

ahrtr reviewed May 5, 2022

View reviewed changes

serathius merged commit 0040f70 into etcd-io:main May 5, 2022

serathius deleted the codeql-permissions branch June 15, 2023 20:40

Provide feedback