Update permissions in Trivy GitHub Actions workflow

Updated permissions in the GitHub Actions workflow to allow write access for contents. This ensures that the Trivy vulnerability scanner can properly execute its tasks when triggered by push or pull requests on the main branch. The changes aim to streamline the workflow and improve integration with the repository.
siddhantprateek · Feb 23, 2024 · 27cff7a · 27cff7a
1 parent fed8d80
commit 27cff7a
Showing 1 changed file with 3 additions and 1 deletion.
diff --git a/.github/workflows/trivy-vulnerability.yml b/.github/workflows/trivy-vulnerability.yml
@@ -6,6 +6,8 @@ on:
       - main
   pull_request:
 
+permissions:
+  contents: write
 
 jobs:
   build:
@@ -29,4 +31,4 @@ jobs:
       - name: Upload Trivy scan results to GitHub Security tab
         uses: github/codeql-action/upload-sarif@v2
         with:
-          sarif_file: 'trivy-results.sarif'
+          sarif_file: 'trivy-results.sarif'