Merge pull request #1444 from arjundashrath/patch-10

Add token permissions for code-scanning/sysdig-scan.yml
This commit is contained in:
Nick Fyson
2022-02-27 14:26:11 +00:00
committed by GitHub
+8 -1
View File
@@ -13,10 +13,17 @@ on:
schedule:
- cron: $cron-weekly
permissions:
contents: read
jobs:
build:
permissions:
checks: write # for sysdiglabs/scan-action to publish the checks
contents: read # for actions/checkout to fetch code
security-events: write # for github/codeql-action/upload-sarif to upload SARIF results
runs-on: ubuntu-latest
steps:
@@ -51,4 +58,4 @@ jobs:
#Upload SARIF file
if: always()
with:
sarif_file: ${{ steps.scan.outputs.sarifReport }}
sarif_file: ${{ steps.scan.outputs.sarifReport }}