From 3567ebee50da5029a2355a60b3883bce037fcea7 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?G=C3=B6tz=20G=C3=B6risch?= <g.goerisch@vdw.de>
Date: Mon, 5 Feb 2024 11:02:02 +0100
Subject: [PATCH] fix(ci): adjust codeql-action permissions (#1220)

---
 .github/workflows/codeql-analysis.yml | 15 ++++++++++++++-
 1 file changed, 14 insertions(+), 1 deletion(-)

diff --git a/.github/workflows/codeql-analysis.yml b/.github/workflows/codeql-analysis.yml
index 02581ae2..1d861243 100644
--- a/.github/workflows/codeql-analysis.yml
+++ b/.github/workflows/codeql-analysis.yml
@@ -21,7 +21,20 @@ on:
   schedule:
     - cron: '0 3 * * 1'
 
-permissions: read-all
+permissions:
+  actions: read
+  checks: read
+  contents: read
+  deployments: read
+  discussions: read
+  issues: read
+  packages: read
+  pages: read
+  pull-requests: read
+  repository-projects: read
+  security-events: write
+  statuses: read
+
 
 jobs:
   analyze: