From d6ae72112179531e6b8f10dc7e73bc192c129cf8 Mon Sep 17 00:00:00 2001 From: halbothpa <86326485+halbothpa@users.noreply.github.com> Date: Tue, 19 May 2026 23:45:07 +0200 Subject: [PATCH 1/4] Potential fix for code scanning alert no. 1: Workflow does not contain permissions Co-authored-by: Copilot Autofix powered by AI <62310815+github-advanced-security[bot]@users.noreply.github.com> --- .github/workflows/ci.yml | 3 +++ 1 file changed, 3 insertions(+) diff --git a/.github/workflows/ci.yml b/.github/workflows/ci.yml index 9d542f9..883a3a5 100644 --- a/.github/workflows/ci.yml +++ b/.github/workflows/ci.yml @@ -1,5 +1,8 @@ name: CI +permissions: + contents: read + on: push: branches: [main] From 4355b7da3cffa5fe7ce71cba60b9066308128dbb Mon Sep 17 00:00:00 2001 From: halbothpa <86326485+halbothpa@users.noreply.github.com> Date: Tue, 19 May 2026 23:47:24 +0200 Subject: [PATCH 2/4] Potential fix for code scanning alert no. 2: Workflow does not contain permissions Co-authored-by: Copilot Autofix powered by AI <62310815+github-advanced-security[bot]@users.noreply.github.com> --- .github/workflows/ci.yml | 3 +++ 1 file changed, 3 insertions(+) diff --git a/.github/workflows/ci.yml b/.github/workflows/ci.yml index 9d542f9..4d20d6a 100644 --- a/.github/workflows/ci.yml +++ b/.github/workflows/ci.yml @@ -7,6 +7,9 @@ on: branches: [main] workflow_dispatch: +permissions: + contents: read + jobs: validate: name: Validate plugin structure From 71879673ad0ba745fa220e574e409a9b7ba3c505 Mon Sep 17 00:00:00 2001 From: halbothpa <86326485+halbothpa@users.noreply.github.com> Date: Tue, 19 May 2026 23:48:14 +0200 Subject: [PATCH 3/4] Potential fix for code scanning alert no. 3: Workflow does not contain permissions Co-authored-by: Copilot Autofix powered by AI <62310815+github-advanced-security[bot]@users.noreply.github.com> --- .github/workflows/ci.yml | 3 +++ 1 file changed, 3 insertions(+) diff --git a/.github/workflows/ci.yml b/.github/workflows/ci.yml index 9d542f9..4d20d6a 100644 --- a/.github/workflows/ci.yml +++ b/.github/workflows/ci.yml @@ -7,6 +7,9 @@ on: branches: [main] workflow_dispatch: +permissions: + contents: read + jobs: validate: name: Validate plugin structure From c8b0868a1cddb7c8b9793594dd2768e7676cd7d7 Mon Sep 17 00:00:00 2001 From: halbothpa <86326485+halbothpa@users.noreply.github.com> Date: Wed, 20 May 2026 01:59:52 +0200 Subject: [PATCH 4/4] Apply suggestions from code review Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> --- .github/workflows/ci.yml | 3 --- 1 file changed, 3 deletions(-) diff --git a/.github/workflows/ci.yml b/.github/workflows/ci.yml index e70be35..883a3a5 100644 --- a/.github/workflows/ci.yml +++ b/.github/workflows/ci.yml @@ -10,9 +10,6 @@ on: branches: [main] workflow_dispatch: -permissions: - contents: read - jobs: validate: name: Validate plugin structure