Added security permissions and error handling to CI/CD pipeline

Rakesh9100 · Rakesh9100 · commit 83094f8686a3 · 2026-02-08T01:59:11.000+05:30
diff --git a/.github/workflows/ci-cd.yml b/.github/workflows/ci-cd.yml
@@ -45,6 +45,9 @@ jobs:
   security-scan:
     name: Security Scan
     runs-on: ubuntu-latest
+    permissions:
+      contents: read
+      security-events: write
     
     steps:
       - name: Checkout code
@@ -63,6 +66,7 @@ jobs:
         if: always()
         with:
           sarif_file: 'trivy-results.sarif'
+        continue-on-error: true
 
   docker-build:
     name: Docker Build & Push
