From baf5c76e2f069355df07b150cd79c48fb1ccfdbd Mon Sep 17 00:00:00 2001
From: Todd Baert <todd.baert@dynatrace.com>
Date: Wed, 12 Jul 2023 08:46:32 -0400
Subject: [PATCH] chore: add ci permissions

---
 .github/workflows/auto-assign.yml | 5 +++++
 README.md                         | 5 +++++
 2 files changed, 10 insertions(+)

diff --git a/.github/workflows/auto-assign.yml b/.github/workflows/auto-assign.yml
index b256adc..c902943 100644
--- a/.github/workflows/auto-assign.yml
+++ b/.github/workflows/auto-assign.yml
@@ -3,6 +3,11 @@ on:
   # pull_request_target is needed instead of just pull_request
   # because repository write permission is needed to assign reviewers
   pull_request_target:
+  
+permissions:
+  contents: read          # to read changed files
+  issues: write           # to read/write issue assignees
+  pull-requests: write    # to read/write PR reviewers
 
 jobs:
   run_self:
diff --git a/README.md b/README.md
index da67bc7..f2df6de 100644
--- a/README.md
+++ b/README.md
@@ -48,6 +48,11 @@ on:
   # the github token will not have sufficient permission to update the PR.
   pull_request_target:
 
+permissions:
+  contents: read          # to read changed files
+  issues: write           # to read/write issue assignees
+  pull-requests: write    # to read/write PR reviewers
+
 jobs:
   run_self:
     runs-on: ubuntu-latest