From afb501754bcf759bc982e6e83402d128c80b42d6 Mon Sep 17 00:00:00 2001
From: temenuzhka-thede <temenuzhka.thede@docker.com>
Date: Fri, 27 Oct 2023 00:26:52 -0500
Subject: [PATCH] Add permissions block to top workflow level

Signed-off-by: temenuzhka-thede <temenuzhka.thede@docker.com>
---
 .github/workflows/codeql.yml | 13 +++++++------
 1 file changed, 7 insertions(+), 6 deletions(-)

diff --git a/.github/workflows/codeql.yml b/.github/workflows/codeql.yml
index 8fb4c021d..56fe9dce2 100644
--- a/.github/workflows/codeql.yml
+++ b/.github/workflows/codeql.yml
@@ -20,19 +20,20 @@ on:
       - '**/*.yml'
       - '**/*_test.go'
 
+permissions:
+  actions: read
+  contents: read
+  security-events: write
+
 jobs:
   analyze:
     name: Analyze
     runs-on: 'ubuntu-latest'
-    permissions:
-      actions: read
-      contents: read
-      security-events: write
-
     strategy:
       fail-fast: false
       matrix:
-        language: [go]
+        language: 
+          - go
         
     steps:
     -