Set up permissions for GitHub Workflows

Hi, I work for Google and the OpenSSF to help open source projects to increase their supply-chain security.

One aspect of supply-chain security checked by the [OpenSSF Scorecard](https://github.com/ossf/scorecard/blob/main/docs/checks.md#token-permissions) and also strongly recommended by the [GitHub Security](https://docs.github.com/en/actions/security-guides/security-hardening-for-github-actions) is to always use credentials that are minimally scoped.

Thus, setting [top level](https://docs.github.com/en/actions/reference/workflow-syntax-for-github-actions#permissions) permissions to `contents: read` and all write permissions being granted on run level is a simple but important practice regarding GitHub Workflows.  

I'll suggest a PR with the permissions changes so let me know if you have any doubts or concerns.  

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Set up permissions for GitHub Workflows #216

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Set up permissions for GitHub Workflows #216

Description

Metadata

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Issue actions