Skip to content

Commit

Permalink
Fix permissions for CodeQL workflows (#16660)
Browse files Browse the repository at this point in the history 
After limiting permissions, our CodeQL workflow started failing.

This is because it needs some extra permissions as explained in
the github/codeql-action#464

This PR adds the required permissions.

(cherry picked from commit b8a9e9fba6737500bdcce920028ece87a31ab129)

GitOrigin-RevId: 6720544199537def2092555f01be32b4b7359779
  • Loading branch information
@potiuk
potiuk authored and Cloud Composer Team committed Nov 27, 2021
1 parent 4a4aa48 commit 843aab4
Showing 1 changed file with 5 additions and 1 deletion.
6 changes: 5 additions & 1 deletion .github/workflows/codeql-analysis.yml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -67,7 +67,11 @@ jobs:
# Override automatic language detection by changing the below list
# Supported options are ['csharp', 'cpp', 'go', 'java', 'javascript', 'python']
language: ['python', 'javascript']

permissions:
actions: read
contents: read
pull-requests: read
security-events: write
steps:
- name: Checkout repository
uses: actions/checkout@v2
Expand Down

0 comments on commit 843aab4

Please sign in to comment.