Potential fix for code scanning alert no. 1: Workflow does not contain permissions

rbamos · github-advanced-security[bot] · rbamos · commit 0ab441f7a3cf · 2025-06-05T12:55:18.000-04:00
Co-authored-by: Copilot Autofix powered by AI &lt;62310815+github-advanced-security[bot]@users.noreply.github.com&gt;
diff --git a/.github/workflows/dependabot-prs.yml b/.github/workflows/dependabot-prs.yml
@@ -1,4 +1,7 @@
 name: Dependabot Pull Request
+permissions:
+  contents: read
+  pull-requests: write
 on:
   pull_request_target:
     types: [opened, synchronize, reopened, labeled]
diff --git a/.github/workflows/tests.yml b/.github/workflows/tests.yml
@@ -1,5 +1,7 @@
 name: Main
 on: push
+permissions:
+  contents: read
 jobs:
   ci:
     name: CI
