From b5ee2631889b74a828fa6a91a1a9dc8148178cad Mon Sep 17 00:00:00 2001
From: Stephan Schroevers <stephan.schroevers@teampicnic.com>
Date: Mon, 5 Sep 2022 07:49:22 +0200
Subject: [PATCH 1/2] Reduce Github Actions build workflow permissions

---
 .github/workflows/build.yaml | 1 +
 1 file changed, 1 insertion(+)

diff --git a/.github/workflows/build.yaml b/.github/workflows/build.yaml
index 65b416bd37..598627abf4 100644
--- a/.github/workflows/build.yaml
+++ b/.github/workflows/build.yaml
@@ -4,6 +4,7 @@ on:
   push:
     branches:
       - 'master'
+permissions: {}
 jobs:
   build:
     runs-on: ubuntu-22.04

From 6b1d6ac2d4ef4a2ab848e038c99716c95a9299bf Mon Sep 17 00:00:00 2001
From: Stephan Schroevers <stephan.schroevers@teampicnic.com>
Date: Mon, 5 Sep 2022 14:49:37 +0200
Subject: [PATCH 2/2] Relax, step 1

---
 .github/workflows/build.yaml | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/.github/workflows/build.yaml b/.github/workflows/build.yaml
index 598627abf4..3cb25e6d6e 100644
--- a/.github/workflows/build.yaml
+++ b/.github/workflows/build.yaml
@@ -4,7 +4,8 @@ on:
   push:
     branches:
       - 'master'
-permissions: {}
+permissions:
+  contents: read
 jobs:
   build:
     runs-on: ubuntu-22.04