From cc60d391ffe71733bb18f2bd6d6ed30a76e7cb05 Mon Sep 17 00:00:00 2001 From: Will Sams Date: Tue, 16 Jun 2026 13:05:04 -0400 Subject: [PATCH 1/2] Add permissions section to PR validation workflow --- .github/workflows/pr-validate.yml | 3 +++ 1 file changed, 3 insertions(+) diff --git a/.github/workflows/pr-validate.yml b/.github/workflows/pr-validate.yml index 2cb549c..f677b3e 100644 --- a/.github/workflows/pr-validate.yml +++ b/.github/workflows/pr-validate.yml @@ -6,6 +6,9 @@ on: pull_request: branches: [main] +permissions: + contents: read + jobs: unit-test-backend: name: Backend Unit Tests From da02bb0e53b365dbe406578261be455da171eaca Mon Sep 17 00:00:00 2001 From: Will Sams Date: Tue, 16 Jun 2026 13:05:36 -0400 Subject: [PATCH 2/2] Add permissions to branch name check workflow Add permissions for reading contents in branch name check workflow --- .github/workflows/branch-name-check.yml | 4 ++++ 1 file changed, 4 insertions(+) diff --git a/.github/workflows/branch-name-check.yml b/.github/workflows/branch-name-check.yml index 5db3666..e61ec4f 100644 --- a/.github/workflows/branch-name-check.yml +++ b/.github/workflows/branch-name-check.yml @@ -2,6 +2,10 @@ name: Enforce Branch Name Semantics on: pull_request: branches: ["main"] + +permissions: + contents: read + jobs: lint-branch-name: name: Lint Branch Name