VLN-496: Set explicit permissions for GitHub Actions workflows #482

picatz · 2025-10-29T17:51:03Z

Summary

.github/workflows/build.yml: Set a workflow-level permissions block to limit GITHUB_TOKEN to read-only repository contents, providing least-privilege access while still allowing checkout.

This change was made by an automated process to ensure all GitHub Actions workflows have explicitly defined permissions as per best practices.

…s-permissions

Set explicit permissions for GitHub Actions workflows

1e6da0e

This change was made by an automated process to ensure all GitHub Actions workflows have explicitly defined permissions as per best practices.

picatz requested a review from a team as a code owner October 29, 2025 17:51

Merge branch 'main' into security-campaign/set-explicit-github-action…

3adc2b2

…s-permissions

captainbeardo approved these changes Dec 16, 2025

View reviewed changes

Merge branch 'main' into security-campaign/set-explicit-github-action…

2cf2f09

…s-permissions

captainbeardo merged commit ab73fcc into main Dec 16, 2025
4 checks passed

captainbeardo deleted the security-campaign/set-explicit-github-actions-permissions branch December 16, 2025 19:05

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

VLN-496: Set explicit permissions for GitHub Actions workflows #482

VLN-496: Set explicit permissions for GitHub Actions workflows #482

Uh oh!

picatz commented Oct 29, 2025

Uh oh!

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

3 participants

VLN-496: Set explicit permissions for GitHub Actions workflows #482

VLN-496: Set explicit permissions for GitHub Actions workflows #482

Uh oh!

Conversation

picatz commented Oct 29, 2025

Summary

Uh oh!

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

3 participants