From c932c435c101a9d4dc1d559330bddef1f83edb19 Mon Sep 17 00:00:00 2001
From: Alexander Taepper <alexander.taepper@gmail.com>
Date: Thu, 14 Nov 2024 17:17:51 +0100
Subject: [PATCH] add permissions to the workflows

---
 .github/workflows/dependencies.yml  | 6 +++++-
 .github/workflows/imageAndTests.yml | 3 +++
 2 files changed, 8 insertions(+), 1 deletion(-)

diff --git a/.github/workflows/dependencies.yml b/.github/workflows/dependencies.yml
index 5fb4de1ad..2ff4942a7 100644
--- a/.github/workflows/dependencies.yml
+++ b/.github/workflows/dependencies.yml
@@ -1,9 +1,13 @@
-name: Dependency Image
+name: "Dependency Image"
 
 on:
   push:
   workflow_dispatch:
 
+permissions:
+  contents: read
+  actions: write
+
 env:
   DOCKER_DEPENDENCY_IMAGE_NAME: ghcr.io/genspectrum/lapis-silo-dependencies
 
diff --git a/.github/workflows/imageAndTests.yml b/.github/workflows/imageAndTests.yml
index 17e958682..3d8a50f86 100644
--- a/.github/workflows/imageAndTests.yml
+++ b/.github/workflows/imageAndTests.yml
@@ -6,6 +6,9 @@ on:
     types:
       - completed
 
+permissions:
+  contents: read
+  actions: write
 
 concurrency:
   group: ci-${{ github.ref }}