From d2206cb23170602c635b03388798d75bdddab946 Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?D=C3=A1ger=20Z=C3=BA=C3=B1iga?= <71352396+dagerzuniga@users.noreply.github.com> Date: Tue, 24 Mar 2026 11:07:28 -0600 Subject: [PATCH] Potential fix for code scanning alert no. 1: Workflow does not contain permissions Co-authored-by: Copilot Autofix powered by AI <62310815+github-advanced-security[bot]@users.noreply.github.com> --- .github/workflows/grype.yml | 2 ++ 1 file changed, 2 insertions(+) diff --git a/.github/workflows/grype.yml b/.github/workflows/grype.yml index 1ed16e6..4252251 100644 --- a/.github/workflows/grype.yml +++ b/.github/workflows/grype.yml @@ -1,5 +1,7 @@ name: Container Image CI on: [push] +permissions: + contents: read jobs: build: runs-on: ubuntu-latest