From 14a1370384b15158d6d221e75c1e2fee3cacc668 Mon Sep 17 00:00:00 2001
From: Sina Madani <sina.madani@vonage.com>
Date: Wed, 20 Nov 2024 17:06:28 +0000
Subject: [PATCH] ci: Reduce workflow permissions

---
 .github/workflows/build.yml   | 10 +---------
 .github/workflows/publish.yml |  9 ---------
 SECURITY.md                   |  2 +-
 3 files changed, 2 insertions(+), 19 deletions(-)

diff --git a/.github/workflows/build.yml b/.github/workflows/build.yml
index ac52e8a..b6cb72d 100644
--- a/.github/workflows/build.yml
+++ b/.github/workflows/build.yml
@@ -6,16 +6,8 @@ on:
   pull_request:
 
 permissions:
-  actions: write
-  checks: write
   contents: read
-  deployments: none
-  issues: read
-  discussions: none
-  packages: none
-  pages: read
-  pull-requests: write
-  security-events: write
+  checks: write
   statuses: write
 
 jobs:
diff --git a/.github/workflows/publish.yml b/.github/workflows/publish.yml
index 3c9a1f9..c0896ea 100644
--- a/.github/workflows/publish.yml
+++ b/.github/workflows/publish.yml
@@ -4,17 +4,8 @@ on:
     types: [published]
 
 permissions:
-  actions: write
-  checks: write
   contents: read
-  deployments: read
-  issues: write
-  discussions: none
   packages: write
-  pages: write
-  pull-requests: read
-  security-events: read
-  statuses: write
 
 jobs:
   publish:
diff --git a/SECURITY.md b/SECURITY.md
index dc86d32..aaf4ad9 100644
--- a/SECURITY.md
+++ b/SECURITY.md
@@ -6,6 +6,6 @@ Only the latest version of the SDK is supported.
 ## Reporting a Vulnerability
 
 To report a security concern, use the "[Report a Vulnerability](https://github.com/Vonage/vonage-kotlin-sdk/security/advisories/new)" tab.
-You can also contact the Developer Relations team directly via [email](devrel@vonage.com] for more private disclosure.
+You can also contact the Developer Relations team directly via [email](devrel@vonage.com) for more private disclosure.
 You can also [raise an Issue](https://github.com/Vonage/vonage-kotlin-sdk/issues/new/choose) and/or create a [Pull Request](https://github.com/Vonage/vonage-kotlin-sdk/pulls) from your fork of the repo.
 Please include as much detail as possible, an indication of severity and, ideally, a minimal reproducible example to demonstrate the issue if possible.