Fix code scanning alert - Token-Permissions

Ericsson / CodeCompass

CodeCompass is a software comprehension tool for large scale software written in C/C++ and Java

https://codecompass.net

GNU General Public License v3.0

497 stars 96 forks source link

Fix code scanning alert - Token-Permissions #723

Closed mcserep closed 2 months ago

mcserep commented 3 months ago

Tracking issue for:

[x] https://github.com/Ericsson/CodeCompass/security/code-scanning/65

The default CodeQL template does not contain a top level permission configuration. The job contains the configuration, so really the detector could be smarter, but let's fix this.