Set permissions for GitHub actions (#7984)

This limits the damage that a compromised GitHub action could do. See https://github.com/ossf/scorecard/blob/main/docs/checks.md#token-permissions https://docs.github.com/en/actions/using-jobs/assigning-permissions-to-jobs
author: Naveen <[email protected]> 2022-03-24 11:32:57 -0500
committer: GitHub <[email protected]> 2022-03-24 09:32:57 -0700
commit: f4a7ba967e739239173bc2440b4e1c6ba3cf41f0 (patch)
tree: 9898f809d99de6014c8a15ab0bfd4adf8a913317 /.github/workflows/release-candidate.yml
parent: 8d045653948d7e522486203507d1edeb356a6fd3 (diff)
1 files changed, 3 insertions, 0 deletions
diff --git a/.github/workflows/release-candidate.yml b/.github/workflows/release-candidate.yml
index 84b2e8565..7259e6215 100644
--- a/.github/workflows/release-candidate.yml
+++ b/.github/workflows/release-candidate.yml
@@ -5,6 +5,9 @@ on:
     branches:
     - 'rc/**'
 
+permissions:
+  contents: read
+
 jobs:
   linux:
author	Naveen <[email protected]>	2022-03-24 11:32:57 -0500
committer	GitHub <[email protected]>	2022-03-24 09:32:57 -0700
commit	f4a7ba967e739239173bc2440b4e1c6ba3cf41f0 (patch)
tree	9898f809d99de6014c8a15ab0bfd4adf8a913317 /.github/workflows/release-candidate.yml
parent	8d045653948d7e522486203507d1edeb356a6fd3 (diff)