Investigate what permissions are needed for our Github actions.
Closed this issue ยท 1 comments
mannycarrera4 commented
๐ Security
Scorecard mentions that Github actions shouldn't just blankly have read and write permissions. I think some make sense to have full access while other don't need full read and write access.
Github outlines what permissions should be assigned for actions.
Here's also a link about permissions in github actions
mannycarrera4 commented
Spiked, are actions need read and write and they're written by us.