GitHub Workflows security hardening (#6472)

* build: harden action_tools.yml permissions Signed-off-by: Alex <aleksandrosansan@gmail.com> * build: harden action.yml permissions Signed-off-by: Alex <aleksandrosansan@gmail.com> * build: harden action_utest.yml permissions Signed-off-by: Alex <aleksandrosansan@gmail.com> Signed-off-by: Alex <aleksandrosansan@gmail.com>
2026-02-05 15:23:03 +08:00 · 2022-09-29 08:44:28 +03:00
parent 64a6297840
commit e0294dab50
3 changed files with 9 additions and 0 deletions
--- a/.github/workflows/action_tools.yml
+++ b/.github/workflows/action_tools.yml
@@ -27,6 +27,9 @@ on:
      - '**/*.h'
      - '**/*.cpp'

+permissions:
+  contents: read # to fetch code (actions/checkout)
+
 jobs:
  test:
    runs-on: ubuntu-latest