From b07fb4debc35386861b6b319208b2379752512b9 Mon Sep 17 00:00:00 2001 From: Tuomas Katila Date: Wed, 20 Dec 2023 12:14:43 +0200 Subject: [PATCH] workflow: fix permissions for release Signed-off-by: Tuomas Katila --- .github/workflows/release.yaml | 5 +++++ 1 file changed, 5 insertions(+) diff --git a/.github/workflows/release.yaml b/.github/workflows/release.yaml index 4968e06a..f1c4eb47 100644 --- a/.github/workflows/release.yaml +++ b/.github/workflows/release.yaml @@ -23,10 +23,15 @@ jobs: trivy: name: Trivy uses: "./.github/workflows/lib-trivy.yaml" + permissions: + actions: read + contents: read + security-events: write with: deployments: false dockerfiles: false export-csv: true + upload-to-github-security-tab: false build: name: Build & Publish