fix: add explicit permissions blocks to workflows (CodeQL)

Co-authored-by: qinfendebingshuo <207279273+qinfendebingshuo@users.noreply.github.com>
This commit is contained in:
copilot-swe-agent[bot] 2026-03-15 12:43:18 +00:00
parent ef9812273f
commit bff9144e9a
2 changed files with 6 additions and 0 deletions

View File

@ -8,6 +8,9 @@ on:
branches:
- 'dev/DEV-*/**'
permissions:
contents: write
jobs:
# ===== Job 1: 解析 + 校验 =====
parse-and-validate:

View File

@ -8,6 +8,9 @@ on:
- cron: '0 4,14 * * *'
workflow_dispatch:
permissions:
contents: read
jobs:
sync:
runs-on: ubuntu-latest