From 2cfbfee6582aa1704cdcc84f1b481d2d684e760b Mon Sep 17 00:00:00 2001
From: Vibhor Dabas <vibhor.dabas@bcbgroup.io>
Date: Sat, 5 Aug 2023 11:43:28 +0530
Subject: [PATCH] fix: set default token permissions for workflows

---
 .github/workflows/build.yml | 1 +
 .github/workflows/lint.yml  | 2 +-
 .github/workflows/test.yml  | 6 +++++-
 3 files changed, 7 insertions(+), 2 deletions(-)

diff --git a/.github/workflows/build.yml b/.github/workflows/build.yml
index dc84a3976..7b68298b1 100644
--- a/.github/workflows/build.yml
+++ b/.github/workflows/build.yml
@@ -1,5 +1,6 @@
 on: pull_request
 name: Build
+permissions: read-all
 jobs:
   build:
     runs-on: ubuntu-latest
diff --git a/.github/workflows/lint.yml b/.github/workflows/lint.yml
index aabe9c5d4..f67428647 100644
--- a/.github/workflows/lint.yml
+++ b/.github/workflows/lint.yml
@@ -1,7 +1,7 @@
 name: Lint
 on:
   pull_request:
-
+permissions: read-all
 jobs:
   golangci:
     name: lint
diff --git a/.github/workflows/test.yml b/.github/workflows/test.yml
index 39e178159..bca8998c1 100644
--- a/.github/workflows/test.yml
+++ b/.github/workflows/test.yml
@@ -1,6 +1,10 @@
 on:
   pull_request:
-
+permissions:
+  contents: read
+  checks: write
+  issues: write
+  pull-requests: write
 name: Test
 jobs:
   test: