Skip to content

Commit 826f4c2

Browse files
Mehdi-BlMehdi-Bl
authored
fix(ci): grant required permissions to review wrappers (#29)
* fix(ci): grant required permissions to review wrappers * fix(ci): scope review permissions to job level
1 parent a509eed commit 826f4c2

2 files changed

Lines changed: 14 additions & 2 deletions

File tree

.github/workflows/claude-review-manual.yml

Lines changed: 7 additions & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -13,10 +13,16 @@ on:
1313
default: false
1414
type: boolean
1515

16-
permissions: {}
16+
permissions:
17+
contents: read
1718

1819
jobs:
1920
claude-review:
21+
permissions:
22+
contents: read
23+
pull-requests: write
24+
issues: write
25+
id-token: write
2026
uses: codingworkflow/codingworkflow-security-policies/.github/workflows/reusable-claude-review.yml@55070d1bc124fbe46d9a8edbc8d536826d4e15ed
2127
with:
2228
pr_number: ${{ inputs.pr_number }}

.github/workflows/opencode-review-manual.yml

Lines changed: 7 additions & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -28,10 +28,16 @@ on:
2828
default: false
2929
type: boolean
3030

31-
permissions: {}
31+
permissions:
32+
contents: read
3233

3334
jobs:
3435
opencode-review:
36+
permissions:
37+
contents: read
38+
pull-requests: write
39+
issues: write
40+
id-token: write
3541
uses: codingworkflow/codingworkflow-security-policies/.github/workflows/reusable-opencode-review.yml@55070d1bc124fbe46d9a8edbc8d536826d4e15ed
3642
with:
3743
pr_number: ${{ inputs.pr_number }}

0 commit comments

Comments
 (0)