fixed #13351 - codeql-analysis.yml: limit write permissions to jobs

danmar · Jan 12, 2025 · d57ef88 · d57ef88
1 parent e744f5a
commit d57ef88
Showing 1 changed file with 2 additions and 1 deletion.
diff --git a/.github/workflows/codeql-analysis.yml b/.github/workflows/codeql-analysis.yml
@@ -14,12 +14,13 @@ on:
 
 permissions:
   contents: read
-  security-events: write
 
 jobs:
   analyze:
     name: Analyze
     runs-on: ubuntu-22.04
+    permissions:
+      security-events: write
 
     strategy:
       fail-fast: false