Add explicit permissions to workflows for security

Copilot · PhantomDave · Copilot · commit ec5db156233a · 2025-10-29T23:15:50.000Z
Co-authored-by: PhantomDave &lt;34485699+PhantomDave@users.noreply.github.com&gt;
diff --git a/.github/workflows/backend-api.yml b/.github/workflows/backend-api.yml
@@ -20,6 +20,8 @@ jobs:
   build-and-lint:
     name: Build and Lint Backend API
     runs-on: ubuntu-latest
+    permissions:
+      contents: read
 
     steps:
     - name: Checkout code
diff --git a/.github/workflows/backend-data.yml b/.github/workflows/backend-data.yml
@@ -20,6 +20,8 @@ jobs:
   build-and-lint:
     name: Build and Lint Backend Data
     runs-on: ubuntu-latest
+    permissions:
+      contents: read
 
     steps:
     - name: Checkout code
diff --git a/.github/workflows/backend-library.yml b/.github/workflows/backend-library.yml
@@ -18,6 +18,8 @@ jobs:
   build-and-lint:
     name: Build and Lint Backend Library
     runs-on: ubuntu-latest
+    permissions:
+      contents: read
 
     steps:
     - name: Checkout code
diff --git a/.github/workflows/frontend.yml b/.github/workflows/frontend.yml
@@ -16,6 +16,8 @@ jobs:
   build-and-lint:
     name: Build and Lint Frontend
     runs-on: ubuntu-latest
+    permissions:
+      contents: read
 
     steps:
     - name: Checkout code
