From 715259940776843d8799bc39de8eb50eb764189b Mon Sep 17 00:00:00 2001
From: Alex Low <aleksandrosansan@gmail.com>
Date: Mon, 19 Sep 2022 12:20:37 +0200
Subject: build: harden GitHub workflow permissions

Grant pull-requests write permission to the labeler workflow and
read-only to everything else.

Signed-off-by: Alex Low <aleksandrosansan@gmail.com>
[ wrap to 80 columns and fix wrong author as requested by author itself ]
Signed-off-by: Christian Marangi <ansuelsmth@gmail.com>
---
 .github/workflows/kernel.yml | 4 ++++
 1 file changed, 4 insertions(+)

(limited to '.github/workflows/kernel.yml')

diff --git a/.github/workflows/kernel.yml b/.github/workflows/kernel.yml
index 4f8c6b9317..62e0952f19 100644
--- a/.github/workflows/kernel.yml
+++ b/.github/workflows/kernel.yml
@@ -7,6 +7,10 @@ on:
       - 'include/kernel-*'
       - 'package/kernel/**'
       - 'target/linux/generic/**'
+
+permissions:
+  contents: read
+
 jobs:
   determine_targets:
     name: Set targets
-- 
cgit v1.2.3