From a9b4b19be5ed5ae78df384f7c669e7d64a50aed6 Mon Sep 17 00:00:00 2001
From: Alex <93376818+sashashura@users.noreply.github.com>
Date: Sun, 28 Aug 2022 15:59:06 +0100
Subject: [PATCH] Restrict permissions in GitHub workflows (#10790)

---
 .github/workflows/main.yml   | 3 +++
 .github/workflows/nodejs.yml | 3 +++
 2 files changed, 6 insertions(+)

diff --git a/.github/workflows/main.yml b/.github/workflows/main.yml
index 1f798749e..d0b1f4d05 100644
--- a/.github/workflows/main.yml
+++ b/.github/workflows/main.yml
@@ -2,6 +2,9 @@ name: CI
 
 on: [push, pull_request]
 
+permissions:
+  contents: read
+
 jobs:
   ubuntu:
     runs-on: ubuntu-18.04
diff --git a/.github/workflows/nodejs.yml b/.github/workflows/nodejs.yml
index ac92ac7f3..9d4c1a244 100644
--- a/.github/workflows/nodejs.yml
+++ b/.github/workflows/nodejs.yml
@@ -2,6 +2,9 @@ name: CI (node.js)
 
 on: [push, pull_request]
 
+permissions:
+  contents: read
+
 jobs:
   build:
     runs-on: ubuntu-latest