Grant GitHub access to ...GitHub

Why shouldn't the least secure process be the one to verify the security?
2024-04-10 23:13:45 -04:00 · 2024-04-10 23:13:45 -04:00 · 2e45949e0c
commit 2e45949e0c
parent 9da5bfcfb0
1 changed files with 1 additions and 3 deletions
--- a/.github/workflows/codeql.yml
+++ b/.github/workflows/codeql.yml
@ -6,9 +6,7 @@ on:
  pull_request:
    branches: [ 10.8 ]

-permissions:
-  contents: write
-  packages: read
+permissions: write-all

 jobs:
  analyze: