From 6933efce21e292e4166a376d54d2a86b28b1fdf9 Mon Sep 17 00:00:00 2001
From: Yutaro Sakamoto <yutaro-sakamoto@yutaro-sakamoto.com>
Date: Sat, 25 May 2024 11:40:08 +0900
Subject: [PATCH] [Add]: Give permissions to workflow files explicitly

---
 .github/workflows/ci.yml                                     | 3 +++
 .github/workflows/docker-compose-for-compiler-developers.yml | 3 +++
 .github/workflows/docker-compose.yml                         | 3 +++
 3 files changed, 9 insertions(+)

diff --git a/.github/workflows/ci.yml b/.github/workflows/ci.yml
index b85fd3d..e705a27 100644
--- a/.github/workflows/ci.yml
+++ b/.github/workflows/ci.yml
@@ -5,6 +5,9 @@ on:
   pull_request:
     types: [opened, reopened, review_requested, synchronize]
 
+permissions:
+  contents: read
+
 jobs:
   run-tests:
     runs-on: ubuntu-latest
diff --git a/.github/workflows/docker-compose-for-compiler-developers.yml b/.github/workflows/docker-compose-for-compiler-developers.yml
index bcfda2b..a3ce40f 100644
--- a/.github/workflows/docker-compose-for-compiler-developers.yml
+++ b/.github/workflows/docker-compose-for-compiler-developers.yml
@@ -5,6 +5,9 @@ on:
   pull_request:
     types: [opened, reopened, review_requested, synchronize]
 
+permissions:
+  contents: read
+
 jobs:
   run-tests:
     runs-on: ubuntu-latest
diff --git a/.github/workflows/docker-compose.yml b/.github/workflows/docker-compose.yml
index b0622a7..b01cdd2 100644
--- a/.github/workflows/docker-compose.yml
+++ b/.github/workflows/docker-compose.yml
@@ -5,6 +5,9 @@ on:
   pull_request:
     types: [opened, reopened, review_requested, synchronize]
 
+permissions:
+  contents: read
+
 jobs:
   run-tests:
     runs-on: ubuntu-latest