refactor(workflow): changes default permissions to read for few workflows increasing security (#3905)

* refactor: makes read default permision --------- Signed-off-by: BLANKatGITHUB <131886247+BLANKatGITHUB@users.noreply.github.com>
2025-05-10 18:05:44 +02:00 · 2024-10-26 22:28:23 +05:30 · 2024-10-26 22:28:23 +05:30 · 851e43211e
commit 851e43211e
parent c895b96274
3 changed files with 9 additions and 0 deletions
--- a/.github/workflows/benchmark.yml
+++ b/.github/workflows/benchmark.yml
@ -5,6 +5,9 @@ on:
    - cron: "0 9 * * *" # run at 6 AM UTC
  workflow_dispatch:

+permissions:
+  contents: read
+
 jobs:
  benchmark:
    strategy:
--- a/.github/workflows/bullmq-tests.yml
+++ b/.github/workflows/bullmq-tests.yml
@ -3,6 +3,9 @@ name: bullmq-tests
 on:
  workflow_dispatch:

+permissions:
+  contents: read
+
 jobs:
  build:
    runs-on: ubuntu-latest
--- a/.github/workflows/test-fakeredis.yml
+++ b/.github/workflows/test-fakeredis.yml
@ -5,6 +5,9 @@ on:
  workflow_dispatch:
  pull_request:

+permissions:
+  contents: read 
+
 concurrency:
  group: dragonfly-${{ github.workflow }}-${{ github.ref }}
  cancel-in-progress: true