fix(cd*): Replaced token with permissions

author: Syndamia <kamen@syndamia.com> 2024-08-13 15:45:14 +0300
committer: Syndamia <kamen@syndamia.com> 2024-08-13 15:45:19 +0300
commit: a17ba562e6bc3d84d2b1cc47c06cf46f61d8374b (patch)
tree: c40850aabcb35fe7e5301d36fe561872a7605d26 /.github/workflows/cd-dev.yml
parent: 718d169c89b729621050bed8b7cd392f84e5215f (diff)
download: pico-web-a17ba562e6bc3d84d2b1cc47c06cf46f61d8374b.tar
pico-web-a17ba562e6bc3d84d2b1cc47c06cf46f61d8374b.tar.gz
pico-web-a17ba562e6bc3d84d2b1cc47c06cf46f61d8374b.zip
1 files changed, 2 insertions, 1 deletions
diff --git a/.github/workflows/cd-dev.yml b/.github/workflows/cd-dev.yml
index f7377ea..f0063e9 100644
--- a/.github/workflows/cd-dev.yml
+++ b/.github/workflows/cd-dev.yml
@@ -33,6 +33,8 @@ jobs:
     name: Scan development docker container with trivy
     runs-on: ubuntu-latest
     needs: Create-and-release-dev-container
+    permissions:
+      security-events: write
     steps:
       - name: Run Trivy vulnerability scanner
         uses: aquasecurity/trivy-action@master
@@ -49,4 +51,3 @@ jobs:
           sarif_file: 'trivy-results.sarif'
           sha: ${{ github.sha }}
           ref: ${{ github.ref }}
-          token: ${{ secrets.TOKEN_GITHUB }}
author	Syndamia <kamen@syndamia.com>	2024-08-13 15:45:14 +0300
committer	Syndamia <kamen@syndamia.com>	2024-08-13 15:45:19 +0300
commit	a17ba562e6bc3d84d2b1cc47c06cf46f61d8374b (patch)
tree	c40850aabcb35fe7e5301d36fe561872a7605d26 /.github/workflows/cd-dev.yml
parent	718d169c89b729621050bed8b7cd392f84e5215f (diff)
download	pico-web-a17ba562e6bc3d84d2b1cc47c06cf46f61d8374b.tar pico-web-a17ba562e6bc3d84d2b1cc47c06cf46f61d8374b.tar.gz pico-web-a17ba562e6bc3d84d2b1cc47c06cf46f61d8374b.zip