From 0c0fe1aecdba6d4c23d4cebc2b980ec33e369ace Mon Sep 17 00:00:00 2001 From: Jason Ojisan Date: Sun, 1 Sep 2024 14:16:08 -0700 Subject: [PATCH] Add top level read content permissions * Add top level read content permissions * Remove unnecessary perm * Revert some changes * Don't think we need the content write perm M2IzZmQ2N2E2NDg0MmRkYmVkZGFmYWE0OTFjOGY0MzZkZTA5ODlkMgo= --- .github/workflows/bench.yml | 3 ++- .github/workflows/codeql.yml | 3 ++- .github/workflows/publish-edge.yml | 2 -- .github/workflows/release.yml | 1 - 4 files changed, 4 insertions(+), 5 deletions(-) diff --git a/.github/workflows/bench.yml b/.github/workflows/bench.yml index 004e806b77..b365d4567d 100644 --- a/.github/workflows/bench.yml +++ b/.github/workflows/bench.yml @@ -1,5 +1,6 @@ name: Performance Benchmarks - +permissions: + contents: read on: push: branches: [master] diff --git a/.github/workflows/codeql.yml b/.github/workflows/codeql.yml index 040795e53b..c0d8977d0a 100644 --- a/.github/workflows/codeql.yml +++ b/.github/workflows/codeql.yml @@ -10,7 +10,8 @@ # supported CodeQL languages. # name: "CodeQL" - +permissions: + contents: read on: push: branches: [ "master" ] diff --git a/.github/workflows/publish-edge.yml b/.github/workflows/publish-edge.yml index e4e6be3172..43091da67d 100644 --- a/.github/workflows/publish-edge.yml +++ b/.github/workflows/publish-edge.yml @@ -8,8 +8,6 @@ jobs: environment: cd outputs: result: ${{ steps.webStorePublish.outcome }} - permissions: - actions: write steps: - uses: robinraju/release-downloader@a96f54c1b5f5e09e47d9504526e96febd949d4c2 # pin@v1.11 with: diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml index 6a50e8c7f6..7a2adf38f2 100644 --- a/.github/workflows/release.yml +++ b/.github/workflows/release.yml @@ -8,7 +8,6 @@ jobs: runs-on: ubuntu-latest permissions: actions: write - contents: write steps: - name: Dispatch publish-chrome uses: aurelien-baudet/workflow-dispatch@3133c5d135c7dbe4be4f9793872b6ef331b53bc7 # pin@v2