From 3d2e8ee668bf6ecf48469039502af8163d604915 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?=F0=9D=97=9A=F0=9D=97=98=F0=9D=97=A2=F0=9D=97=A5?=
 =?UTF-8?q?=F0=9D=97=9A=F0=9D=97=98?=
 <201302550+Aasyaco@users.noreply.github.com>
Date: Sun, 3 May 2026 20:46:52 +0600
Subject: [PATCH 1/3] Potential fix for code scanning alert no. 3: Workflow
 does not contain permissions

Co-authored-by: Copilot Autofix powered by AI <62310815+github-advanced-security[bot]@users.noreply.github.com>
---
 .github/workflows/msvc-ci.yml | 4 ++++
 1 file changed, 4 insertions(+)

diff --git a/.github/workflows/msvc-ci.yml b/.github/workflows/msvc-ci.yml
index 699d97b..8fa4393 100644
--- a/.github/workflows/msvc-ci.yml
+++ b/.github/workflows/msvc-ci.yml
@@ -6,6 +6,10 @@ on:
     branches: [ __main__ ]
   workflow_dispatch:
 
+permissions:
+  contents: read
+  packages: read
+
 jobs:
   build:
     runs-on: windows-latest

From 7628dcd265f54739ef163893192114e981141c95 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?=F0=9D=97=9A=F0=9D=97=98=F0=9D=97=A2=F0=9D=97=A5?=
 =?UTF-8?q?=F0=9D=97=9A=F0=9D=97=98?=
 <201302550+Aasyaco@users.noreply.github.com>
Date: Sun, 3 May 2026 20:47:50 +0600
Subject: [PATCH 2/3] Potential fix for code scanning alert no. 2: Workflow
 does not contain permissions

Co-authored-by: Copilot Autofix powered by AI <62310815+github-advanced-security[bot]@users.noreply.github.com>
---
 .github/workflows/macos-ci.yml | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/.github/workflows/macos-ci.yml b/.github/workflows/macos-ci.yml
index 54354f4..25eb434 100644
--- a/.github/workflows/macos-ci.yml
+++ b/.github/workflows/macos-ci.yml
@@ -4,6 +4,9 @@ on:
   push:
     branches: [__main__]
 
+permissions:
+  contents: read
+
 jobs:
   build:
     runs-on: macos-latest

From 08f4a36c0eaff34b1599760023298346b836842b Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?=F0=9D=97=9A=F0=9D=97=98=F0=9D=97=A2=F0=9D=97=A5?=
 =?UTF-8?q?=F0=9D=97=9A=F0=9D=97=98?=
 <201302550+Aasyaco@users.noreply.github.com>
Date: Sun, 3 May 2026 20:48:15 +0600
Subject: [PATCH 3/3] Potential fix for code scanning alert no. 1: Workflow
 does not contain permissions

Co-authored-by: Copilot Autofix powered by AI <62310815+github-advanced-security[bot]@users.noreply.github.com>
---
 .github/workflows/linux-ci.yml | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/.github/workflows/linux-ci.yml b/.github/workflows/linux-ci.yml
index 4103114..47c076d 100644
--- a/.github/workflows/linux-ci.yml
+++ b/.github/workflows/linux-ci.yml
@@ -4,6 +4,9 @@ on:
   push:
     branches: [__main__]
 
+permissions:
+  contents: read
+
 jobs:
   build:
     runs-on: ubuntu-latest