.github: allow only read permission in sonar-check.yml

2025-10-26 08:42:29 +01:00 · 2023-02-23 13:47:48 +01:00 · 2023-02-23 13:47:48 +01:00 · 0457cc559e
commit 0457cc559e
parent a3670496ad
1 changed files with 3 additions and 0 deletions
--- a/.github/workflows/sonar-check.yml
+++ b/.github/workflows/sonar-check.yml
@ -19,6 +19,9 @@ name: Sonar Quality Check

 on: [pull_request_target]

+permissions:
+  contents: read
+
 concurrency:
  group: ${{ github.workflow }}-${{ github.event.pull_request.number || github.ref }}
  cancel-in-progress: true