From eaa291d84e05ac89d6a8b8d17fdf846e62316d8d Mon Sep 17 00:00:00 2001
From: mutao <sasaki.h1026@gmail.com>
Date: Wed, 21 Feb 2024 13:35:06 +0900
Subject: [PATCH] feat: set permissions for workflow

---
 .github/workflows/secrets-scan.yaml | 4 ++++
 1 file changed, 4 insertions(+)

diff --git a/.github/workflows/secrets-scan.yaml b/.github/workflows/secrets-scan.yaml
index 424a8d8..ed9e76f 100644
--- a/.github/workflows/secrets-scan.yaml
+++ b/.github/workflows/secrets-scan.yaml
@@ -3,6 +3,10 @@ name: Secrets Scan with Trivy
 on:
   pull_request:
 
+permissions:
+  contents: read
+  pull-requests: write
+
 jobs:
   scan:
     runs-on: ubuntu-latest