From 839d81ce8a46533a8ace6bddb37d6ee4cf2e39c1 Mon Sep 17 00:00:00 2001
From: Konstantin Aksenov <aksenov.kostya@gmail.com>
Date: Fri, 25 Oct 2024 18:04:18 +0200
Subject: [PATCH] fix(ci): setup permissions set for github token

---
 .github/workflows/ci.yml     |  7 +++++++
 .github/workflows/danger.yml | 16 ++++++++++++++++
 2 files changed, 23 insertions(+)

diff --git a/.github/workflows/ci.yml b/.github/workflows/ci.yml
index d03f732c..92538cd9 100644
--- a/.github/workflows/ci.yml
+++ b/.github/workflows/ci.yml
@@ -4,6 +4,13 @@ on: pull_request
 
 jobs:
   build:
+    permissions:
+      statuses: write
+      pull-requests: read
+      discussions: write
+      issues: write
+      contents: read
+
     strategy:
       fail-fast: false
       matrix:
diff --git a/.github/workflows/danger.yml b/.github/workflows/danger.yml
index eb983e0d..ba428ab6 100644
--- a/.github/workflows/danger.yml
+++ b/.github/workflows/danger.yml
@@ -4,6 +4,22 @@ on: [pull_request]
 
 jobs:
   build:
+    permissions:
+      actions: write
+      attestations: write
+      checks: write
+      contents: write
+      deployments: write
+      id-token: write
+      issues: write
+      discussions: write
+      packages: write
+      pages: write
+      pull-requests: write
+      repository-projects: write
+      security-events: write
+      statuses: write
+
     runs-on: ubuntu-latest
     name: "Run Danger"
     steps: