updated gh_token permissions for anchore/scan-action

This commit is contained in:
h0x0er
2022-01-31 14:23:00 +05:30
committed by h0x0er
parent c005c55b8b
commit 34d35389d1
+7 -1
View File
@@ -20,8 +20,14 @@ on:
schedule:
- cron: $cron-weekly
permissions:
contents: read
jobs:
Anchore-Build-Scan:
permissions:
contents: read # for actions/checkout to fetch code
security-events: write # for github/codeql-action/upload-sarif to upload SARIF results
runs-on: ubuntu-latest
steps:
- name: Checkout the code
@@ -36,4 +42,4 @@ jobs:
- name: Upload Anchore Scan Report
uses: github/codeql-action/upload-sarif@v1
with:
sarif_file: results.sarif
sarif_file: results.sarif