add security permissions for security-scan job in DevContainer CI workflow

lxsaah · lxsaah · commit c60b0305e2f3 · 2025-09-23T06:24:14.000+02:00
diff --git a/.github/workflows/devcontainer.yml b/.github/workflows/devcontainer.yml
@@ -153,6 +153,10 @@ jobs:
     runs-on: ubuntu-latest
     needs: build-devcontainer
     if: github.event_name != 'pull_request'
+    permissions:
+      contents: read
+      security-events: write
+      actions: read
     
     steps:
       - name: Checkout repository
