about summary refs log tree commit diff
path: root/nixpkgs/.github/workflows/pending-set.yml
diff options
context:
space:
mode:
Diffstat (limited to 'nixpkgs/.github/workflows/pending-set.yml')
-rw-r--r--nixpkgs/.github/workflows/pending-set.yml5
1 files changed, 5 insertions, 0 deletions
diff --git a/nixpkgs/.github/workflows/pending-set.yml b/nixpkgs/.github/workflows/pending-set.yml
index b15e4847e67c..0dc3031d87c0 100644
--- a/nixpkgs/.github/workflows/pending-set.yml
+++ b/nixpkgs/.github/workflows/pending-set.yml
@@ -8,8 +8,13 @@ on:
 # the GitHub repository. This means that it should not evaluate user input in a
 # way that allows code injection.
 
+permissions:
+  contents: read
+
 jobs:
   action:
+    permissions:
+      statuses: write
     runs-on: ubuntu-latest
     steps:
     - name: set pending status
generated by cgit-pink 1.4.1 (git 2.36.1) at 2024-06-02 18:55:27 +0000