[chore] [workflow] Add permissions (open-telemetry#37127)

#### Description codeql requires security-events: write... #### Link to tracking issue #### Testing * [Before](https://github.com/check-spelling-sandbox/opentelemetry-collector-contrib/actions/runs/12701467278) * [After](https://github.com/check-spelling-sandbox/opentelemetry-collector-contrib/actions/runs/12702117033) Signed-off-by: Josh Soref <[email protected]>
sematext · Jan 13, 2025 · a3c2c07 · a3c2c07
1 parent 7182b53
commit a3c2c07
Showing 1 changed file with 4 additions and 0 deletions.
diff --git a/.github/workflows/codeql-analysis.yml b/.github/workflows/codeql-analysis.yml
@@ -9,6 +9,10 @@ on:
 jobs:
   CodeQL-Build:
     runs-on: macos-latest
+    permissions:
+      actions: read
+      contents: read
+      security-events: write
     if: ${{ github.actor != 'dependabot[bot]' }}
     env:
       # Force CodeQL to run the extraction on the files compiled by our custom