From b6c5103829d9c50e6c9e275640ee3210c0047e50 Mon Sep 17 00:00:00 2001
From: Amaury Chamayou <amaury@xargs.fr>
Date: Thu, 5 Feb 2026 11:39:39 +0000
Subject: [PATCH] Potential fix for code scanning alert no. 7: Workflow does
 not contain permissions

Co-authored-by: Copilot Autofix powered by AI <62310815+github-advanced-security[bot]@users.noreply.github.com>
---
 .github/workflows/codeql-analysis.yml | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/.github/workflows/codeql-analysis.yml b/.github/workflows/codeql-analysis.yml
index d547871..10cc0e6 100644
--- a/.github/workflows/codeql-analysis.yml
+++ b/.github/workflows/codeql-analysis.yml
@@ -13,6 +13,9 @@ jobs:
   analyze:
     name: Analyze
     runs-on: ubuntu-latest
+    permissions:
+      contents: read
+      security-events: write
 
     strategy:
       fail-fast: false