Add security events permissions (#8)

justinchuby · May 18, 2024 · 9b7c619 · 9b7c619
1 parent f1b9b23
commit 9b7c619
Show file tree

Hide file tree

Showing 2 changed files with 16 additions and 9 deletions.
diff --git a/.github/workflows/main.yml b/.github/workflows/main.yml
@@ -9,6 +9,8 @@ on:
 
 jobs:
   lintrunner:
+    permissions:
+      security-events: write
     runs-on: ubuntu-latest
     name: Test the action
     steps:

diff --git a/README.md b/README.md
@@ -9,15 +9,20 @@ This action sets up and runs `lintrunner`(https://github.com/suo/lintrunner) to
 See [action.yml](./action.yml)
 
 ```yaml
-steps:
-  - uses: actions/checkout@v3
-  - uses: justinchuby/lintrunner-action@main
-    with:
-      # Whether the action should upload a SARIF report of the
-      # lint results which will show up as a GitHub code scanning report
-      publish_code_scanning: true
-      # Disable verbose logging from lintrunner and only show lint results
-      quiet: true
+jobs:
+  lint:
+    permissions:
+      security-events: write
+    runs-on: ubuntu-latest
+    steps:
+      - uses: actions/checkout@v3
+      - uses: justinchuby/lintrunner-action@main
+        with:
+          # Whether the action should upload a SARIF report of the
+          # lint results which will show up as a GitHub code scanning report
+          publish_code_scanning: true
+          # Disable verbose logging from lintrunner and only show lint results
+          quiet: true
 ```
 
 ## Set up lintrunner