GitHub Workflows security hardening (#96492)

* Update project-updater.yml Signed-off-by: sashashura <93376818+sashashura@users.noreply.github.com> * Update project-updater.yml repository-projects: write is not needed because a separate secrets.ADD_TO_PROJECT_PAT is used Signed-off-by: sashashura <93376818+sashashura@users.noreply.github.com>
2022-10-08 11:13:34 +03:00 · 2022-10-08 11:13:34 +03:00 · c66dbddfba
parent 531ffaa7cd
commit c66dbddfba
1 changed files with 3 additions and 0 deletions
--- a/.github/workflows/project-updater.yml
+++ b/.github/workflows/project-updater.yml
@ -6,6 +6,9 @@ on:
      - opened
      - labeled

+permissions:
+  contents: read
+
 jobs:
  add-to-project:
    name: Add issues to projects