Update starter workflows to specify permissions

This commit is contained in:
eric sciple
2021-03-02 19:59:19 -06:00
parent ffb4bccd2d
commit 6a69f367db
13 changed files with 40 additions and 0 deletions
+3
View File
@@ -24,6 +24,9 @@ jobs:
analyze:
name: Analyze
runs-on: ubuntu-latest
permissions:
contents: read
security-events: write
strategy:
fail-fast: false
+3
View File
@@ -18,6 +18,9 @@ jobs:
lint:
name: Kubesec
runs-on: ubuntu-20.04
permissions:
contents: read
security-events: write
steps:
- name: Checkout code
uses: actions/checkout@v2
+3
View File
@@ -37,6 +37,9 @@ jobs:
name: Mayhem for API
# Mayhem for API runs on linux, mac and windows
runs-on: ubuntu-latest
permissions:
contents: read
security-events: write
steps:
- uses: actions/checkout@v2
+3
View File
@@ -18,6 +18,9 @@ jobs:
analyze:
name: Analyze
runs-on: ubuntu-latest
permissions:
contents: read
security-events: write
steps:
- name: Checkout repository
+3
View File
@@ -17,6 +17,9 @@ jobs:
tfsec:
name: Run tfsec sarif report
runs-on: ubuntu-latest
permissions:
contents: read
security-events: write
steps:
- name: Clone repo