Skip to content

Potential fix for code scanning alert no. 4: Workflow does not contain permissions#4

Merged
github-actions[bot] merged 1 commit into
mainfrom
alert-autofix-4
Jun 19, 2026
Merged

Potential fix for code scanning alert no. 4: Workflow does not contain permissions#4
github-actions[bot] merged 1 commit into
mainfrom
alert-autofix-4

Conversation

@JanGalek

Copy link
Copy Markdown
Contributor

Potential fix for https://github.com/gouef/githubtoplanguages/security/code-scanning/4

Add an explicit permissions block to .github/workflows/docs-formatter.yml so the workflow no longer relies on repository/org defaults and still preserves current behavior (committing and pushing formatted docs).
The best single fix is to set workflow-level permissions right after the on: block:

  • contents: write (required for git push using GITHUB_TOKEN)

No imports, methods, or dependencies are needed since this is YAML config only.

Suggested fixes powered by Copilot Autofix. Review carefully before merging.

…contain permissions

Co-authored-by: Copilot Autofix powered by AI <62310815+github-advanced-security[bot]@users.noreply.github.com>
@github-actions github-actions Bot merged commit 420e065 into main Jun 19, 2026
5 of 7 checks passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

None yet

Projects

None yet

Development

Successfully merging this pull request may close these issues.

1 participant