From d995bc5a7e540b572d1863c4742789bef52c83f7 Mon Sep 17 00:00:00 2001 From: Alex Date: Mon, 26 Sep 2022 20:08:12 +0200 Subject: [PATCH] build: harden azuresync.yml permissions Signed-off-by: Alex --- .github/workflows/azuresync.yml | 4 ++++ 1 file changed, 4 insertions(+) diff --git a/.github/workflows/azuresync.yml b/.github/workflows/azuresync.yml index 624e334108..476df799e0 100644 --- a/.github/workflows/azuresync.yml +++ b/.github/workflows/azuresync.yml @@ -7,8 +7,12 @@ on: concurrency: azuresync-${{ github.event.issue.number }} +permissions: {} jobs: alert: + permissions: + issues: write # to update issue body + runs-on: ubuntu-latest steps: - uses: danhellem/github-actions-issue-to-work-item@master