From ec84ac54fa255ebf54e4aba90e894e94b45049d6 Mon Sep 17 00:00:00 2001 From: Drew Roen <102626803+drewroengoogle@users.noreply.github.com> Date: Wed, 4 May 2022 13:39:07 -0500 Subject: [PATCH] Add default read permissions to address a code scanning security issue (flutter/engine#33103) --- engine/src/flutter/.github/workflows/mirror.yml | 3 +++ 1 file changed, 3 insertions(+) diff --git a/engine/src/flutter/.github/workflows/mirror.yml b/engine/src/flutter/.github/workflows/mirror.yml index f8a5e788970..c5e20e9cf3f 100644 --- a/engine/src/flutter/.github/workflows/mirror.yml +++ b/engine/src/flutter/.github/workflows/mirror.yml @@ -8,6 +8,9 @@ on: branches: - 'main' +# Declare default permissions as read only. +permissions: read-all + jobs: mirror_job: permissions: