add actions: read to any job using upload-sarif

This commit is contained in:
Chad Bentz
2022-09-14 18:17:28 -04:00
parent f6c8c7e589
commit 568b096f39
29 changed files with 29 additions and 1 deletions
+1
View File
@@ -24,6 +24,7 @@ jobs:
checks: write # for sysdiglabs/scan-action to publish the checks
contents: read # for actions/checkout to fetch code
security-events: write # for github/codeql-action/upload-sarif to upload SARIF results
actions: read # only required for a private repository by github/codeql-action/upload-sarif to get the Action run status
runs-on: ubuntu-latest
steps: