Skip to content

Code Scanning Alert (high): no topLevel permission defined #910

New issue
New issue
Open
#911
Open
Code Scanning Alert (high): no topLevel permission defined#910
#911
Assignees
Mossaka
Labels
ci/cdAnything CI/CD related
@Mossaka

Description

@Mossaka
Mossaka
opened on Mar 6, 2025

Remediation (click "Show more" below):

  • Set top-level permissions as read-all or contents: read as described in GitHub's documentation.

  • Set any required write permissions at the job-level. Only set the permissions required for that job; do not set permissions: write-all at the job level.

  • To help determine the permissions needed for your workflows, you may use StepSecurity's online tool by ticking the "Restrict permissions for GITHUB_TOKEN". You may also tick the "Pin actions to a full length commit SHA" to fix issues found by the Pinned-dependencies check.

Severity: High

Metadata

Metadata

Assignees

Labels

ci/cdAnything CI/CD related

Type

No type

Projects

No projects

Milestone

No milestone

Relationships

None yet

Development

No branches or pull requests

Issue actions