From 07afa3c4807ca83be909995c4347cf1029439ece Mon Sep 17 00:00:00 2001
From: Ashish Kurmi <100655670+boahc077@users.noreply.github.com>
Date: Mon, 3 Oct 2022 07:23:03 -0700
Subject: [PATCH] Make GitHub Actions workflow more secure (#2154)

Co-authored-by: Sindre Sorhus <sindresorhus@gmail.com>
---
 .github/workflows/main.yml | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/.github/workflows/main.yml b/.github/workflows/main.yml
index 959605d4c..c8ae4f20f 100644
--- a/.github/workflows/main.yml
+++ b/.github/workflows/main.yml
@@ -2,6 +2,8 @@ name: CI
 on:
   - push
   - pull_request
+permissions:
+  contents: read
 jobs:
   test:
     name: Node.js ${{ matrix.node-version }} on ${{ matrix.os }}