Skip to content

Commit f90389d

Browse files
committed
security: add missing permissions to cache-management workflow
- Add contents: read permission to generate-cache-key job - Follows principle of least privilege for GitHub Actions - Addresses CodeQL workflow permissions warning
1 parent 7e645e7 commit f90389d

1 file changed

Lines changed: 2 additions & 0 deletions

File tree

.github/workflows/cache-management.yml

Lines changed: 2 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -28,6 +28,8 @@ jobs:
2828
generate-cache-key:
2929
name: Generate Cache Key
3030
runs-on: ubuntu-latest
31+
permissions:
32+
contents: read
3133
outputs:
3234
cache-key: ${{ steps.cache-key.outputs.key }}
3335
cache-hit: ${{ steps.cache.outputs.cache-hit }}

0 commit comments

Comments
 (0)