From 2f0dc2ae2422f2bcff35000ac0b2835657bc6e56 Mon Sep 17 00:00:00 2001
From: stevenhorsman <steven@uk.ibm.com>
Date: Wed, 28 May 2025 09:57:19 +0100
Subject: [PATCH] workflows: gatekeeper: Update permissions

Restrict the permissions of gatekeeper flow to read
contents only for better security

Signed-off-by: stevenhorsman <steven@uk.ibm.com>
---
 .github/workflows/gatekeeper.yaml | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/.github/workflows/gatekeeper.yaml b/.github/workflows/gatekeeper.yaml
index d184ecee9..904124e4e 100644
--- a/.github/workflows/gatekeeper.yaml
+++ b/.github/workflows/gatekeeper.yaml
@@ -19,6 +19,8 @@ concurrency:
 jobs:
   gatekeeper:
     runs-on: ubuntu-22.04
+    permissions:
+      contents: read
     steps:
       - uses: actions/checkout@v4
         with: