apply explicit permissions as per CodeQL suggestion

as per rule ID actions/missing-workflow-permissions
2026-04-20 22:05:35 -04:00 · 2025-10-10 15:07:44 +02:00
parent bab4d50cd4
commit 7eec8caae3
5 changed files with 20 additions and 0 deletions
@@ -4,8 +4,12 @@ on:
  push:
    tags: '[0-9]+.[0-9]?[0-9]?[0-9]?.?[0-9]+'

+permissions: {}
+
 jobs:
  draft:
+    permissions:
+      contents: write
    runs-on: ubuntu-latest
    steps:
      - name: Fetch changelog from tag