Skip to content

Add explicit workflow token permissions#258

Open
arpitjain099 wants to merge 1 commit into
GSA:mainfrom
arpitjain099:security/workflow-permissions-2026-05
Open

Add explicit workflow token permissions#258
arpitjain099 wants to merge 1 commit into
GSA:mainfrom
arpitjain099:security/workflow-permissions-2026-05

Conversation

@arpitjain099

@arpitjain099 arpitjain099 commented May 12, 2026

Copy link
Copy Markdown

Summary

  • Add an explicit permissions block to .github/workflows/check-db-models.yml.
  • Set contents: read as the minimal GITHUB_TOKEN scope.

Why

Code scanning flags workflows without explicit token scopes. Declaring least-privilege permissions improves security posture and documents required access.

@arpitjain099 arpitjain099 force-pushed the security/workflow-permissions-2026-05 branch from 02c2329 to 20cf445 Compare May 13, 2026 17:14
@arpitjain099
Add explicit workflow token permissions
c732310 
Signed-off-by: Arpit Jain <arpitjain099@gmail.com>
@arpitjain099 arpitjain099 force-pushed the security/workflow-permissions-2026-05 branch from 7a5fb37 to c732310 Compare June 10, 2026 06:46
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@arpitjain099