From aacce1aff67967599a5e5850ee6a02a862f36596 Mon Sep 17 00:00:00 2001
From: Alex <aleksandrosansan@gmail.com>
Date: Fri, 23 Sep 2022 18:10:41 +0200
Subject: [PATCH] build: harden GitHub Workflow permissions (#5241)

Signed-off-by: Alex Low <aleksandrosansan@gmail.com>
---
 .github/workflows/main.yml | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/.github/workflows/main.yml b/.github/workflows/main.yml
index cb69ba284b..7c04ee7bb9 100644
--- a/.github/workflows/main.yml
+++ b/.github/workflows/main.yml
@@ -8,6 +8,9 @@ on:
 
 jobs:
   build:
+    permissions:
+      contents: write # for git push
+
     name: Build and Push
     runs-on: ubuntu-latest
     steps: