From a321c1a11efa257e7fbe7357e63c9ab930ddfba2 Mon Sep 17 00:00:00 2001
From: Al Cutter <al.cutter@gmail.com>
Date: Tue, 15 Nov 2022 14:41:19 +0000
Subject: [PATCH] Tighten action permissions

---
 .github/workflows/codeql-analysis.yml | 3 +++
 .github/workflows/go_test.yml         | 2 ++
 2 files changed, 5 insertions(+)

diff --git a/.github/workflows/codeql-analysis.yml b/.github/workflows/codeql-analysis.yml
index 3da87eb..f7202a6 100644
--- a/.github/workflows/codeql-analysis.yml
+++ b/.github/workflows/codeql-analysis.yml
@@ -20,6 +20,9 @@ on:
   schedule:
     - cron: '37 3 * * 1'
 
+permissions:
+  contents: read
+
 jobs:
   analyze:
     name: Analyze
diff --git a/.github/workflows/go_test.yml b/.github/workflows/go_test.yml
index 9c70486..ce93865 100644
--- a/.github/workflows/go_test.yml
+++ b/.github/workflows/go_test.yml
@@ -1,5 +1,7 @@
 on: [push, pull_request]
 name: Test Go
+permissions:
+  contents: read
 jobs:
   test:
     strategy: