From d1c7793cd171b91b2ff40eaa572c8b84ee324b73 Mon Sep 17 00:00:00 2001
From: Arthur van de Vondervoort <arthur.van.de.vondervoort@gmail.com>
Date: Fri, 24 Apr 2026 18:11:17 +0200
Subject: [PATCH] fix: add actions:read permission for reusable workflow

The build-test.yml reusable workflow's 'report' job requires
'actions: read' to download artifacts via dorny/test-reporter.
When the caller (build-and-release.yml) sets explicit permissions
without 'actions', it defaults to 'none', blocking the nested job.

Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com>
---
 .github/workflows/build-and-release.yml | 1 +
 1 file changed, 1 insertion(+)

diff --git a/.github/workflows/build-and-release.yml b/.github/workflows/build-and-release.yml
index 352f65c..b0baa1d 100644
--- a/.github/workflows/build-and-release.yml
+++ b/.github/workflows/build-and-release.yml
@@ -19,6 +19,7 @@ on:
     branches: [main]
 
 permissions:
+  actions: read
   contents: write
   packages: write
   checks: write