Set permissions for GitHub actions (#7984)

This limits the damage that a compromised GitHub action could do. See https://github.com/ossf/scorecard/blob/main/docs/checks.md#token-permissions https://docs.github.com/en/actions/using-jobs/assigning-permissions-to-jobs
author: Naveen <[email protected]> 2022-03-24 11:32:57 -0500
committer: GitHub <[email protected]> 2022-03-24 09:32:57 -0700
commit: f4a7ba967e739239173bc2440b4e1c6ba3cf41f0 (patch)
tree: 9898f809d99de6014c8a15ab0bfd4adf8a913317 /.github/workflows/lint.yml.bkp
parent: 8d045653948d7e522486203507d1edeb356a6fd3 (diff)
1 files changed, 3 insertions, 0 deletions
diff --git a/.github/workflows/lint.yml.bkp b/.github/workflows/lint.yml.bkp
index 13f4919da..890f55636 100644
--- a/.github/workflows/lint.yml.bkp
+++ b/.github/workflows/lint.yml.bkp
@@ -14,6 +14,9 @@ on:
       - stack.yaml
       - .travis.yml
 
+permissions:
+  contents: read
+
 jobs:
   lint:
     name: Lint
author	Naveen <[email protected]>	2022-03-24 11:32:57 -0500
committer	GitHub <[email protected]>	2022-03-24 09:32:57 -0700
commit	f4a7ba967e739239173bc2440b4e1c6ba3cf41f0 (patch)
tree	9898f809d99de6014c8a15ab0bfd4adf8a913317 /.github/workflows/lint.yml.bkp
parent	8d045653948d7e522486203507d1edeb356a6fd3 (diff)