From bba4275c631d30595c3c22365a3c341a9fe4bea8 Mon Sep 17 00:00:00 2001 From: Quanyi Ma Date: Tue, 6 Jan 2026 21:21:10 +0800 Subject: [PATCH] Potential fix for code scanning alert no. 7: Workflow does not contain permissions Co-authored-by: Copilot Autofix powered by AI <62310815+github-advanced-security[bot]@users.noreply.github.com> Signed-off-by: Quanyi Ma --- .github/workflows/base.yml | 3 +++ 1 file changed, 3 insertions(+) diff --git a/.github/workflows/base.yml b/.github/workflows/base.yml index 4f9aafba..7313fb57 100644 --- a/.github/workflows/base.yml +++ b/.github/workflows/base.yml @@ -11,6 +11,9 @@ on: name: Check, Build and Test +permissions: + contents: read + concurrency: group: ${{ github.workflow }}-${{ github.event.pull_request.number || github.ref }} cancel-in-progress: true