From eb7de9c98eea763e092f55af4c47e23ce1caec81 Mon Sep 17 00:00:00 2001 From: Mardav Wala Date: Thu, 14 Aug 2025 18:46:55 -0400 Subject: [PATCH 1/3] Potential fix for code scanning alert no. 7: Workflow does not contain permissions Co-authored-by: Copilot Autofix powered by AI <62310815+github-advanced-security[bot]@users.noreply.github.com> --- .github/workflows/test.yml | 2 ++ 1 file changed, 2 insertions(+) diff --git a/.github/workflows/test.yml b/.github/workflows/test.yml index 6b9ac7e..9d5f6ef 100644 --- a/.github/workflows/test.yml +++ b/.github/workflows/test.yml @@ -1,3 +1,5 @@ +permissions: + contents: read name: 'build-test' on: # rebuild any PRs and main branch changes workflow_dispatch: From 82cff4c7738c5fe092140f4ba98f1b570a2c27a3 Mon Sep 17 00:00:00 2001 From: Mardav Wala Date: Thu, 14 Aug 2025 18:50:25 -0400 Subject: [PATCH 2/3] Update .github/workflows/test.yml Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com> --- .github/workflows/test.yml | 2 ++ 1 file changed, 2 insertions(+) diff --git a/.github/workflows/test.yml b/.github/workflows/test.yml index 9d5f6ef..a2c6ca5 100644 --- a/.github/workflows/test.yml +++ b/.github/workflows/test.yml @@ -1,6 +1,8 @@ permissions: contents: read name: 'build-test' +permissions: + contents: read on: # rebuild any PRs and main branch changes workflow_dispatch: pull_request: From a963d478cf84d46c9cbb85406d94e77ba63f511e Mon Sep 17 00:00:00 2001 From: Mardav Wala Date: Thu, 14 Aug 2025 18:52:07 -0400 Subject: [PATCH 3/3] Remove redundant permissions section from test.yml --- .github/workflows/test.yml | 2 -- 1 file changed, 2 deletions(-) diff --git a/.github/workflows/test.yml b/.github/workflows/test.yml index a2c6ca5..0966ab2 100644 --- a/.github/workflows/test.yml +++ b/.github/workflows/test.yml @@ -1,5 +1,3 @@ -permissions: - contents: read name: 'build-test' permissions: contents: read