Add explicit permissions to GitHub workflows for security

Copilot · KSemenenko · Copilot · commit 3ddaeb8b5604 · 2025-10-24T12:21:02.000Z
Co-authored-by: KSemenenko &lt;4385716+KSemenenko@users.noreply.github.com&gt;
diff --git a/.github/workflows/ci.yml b/.github/workflows/ci.yml
@@ -13,6 +13,8 @@ jobs:
   build:
     name: Build and Test
     runs-on: ubuntu-latest
+    permissions:
+      contents: read
 
     steps:
     - name: Checkout
diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml
@@ -12,6 +12,8 @@ jobs:
   build:
     name: Build and Test
     runs-on: ubuntu-latest
+    permissions:
+      contents: read
 
     outputs:
       version: ${{ steps.version.outputs.version }}
@@ -59,6 +61,8 @@ jobs:
     needs: build
     runs-on: ubuntu-latest
     if: github.ref == 'refs/heads/main'
+    permissions:
+      contents: read
 
     outputs:
       published: ${{ steps.publish.outputs.published }}
@@ -122,6 +126,8 @@ jobs:
     needs: publish-nuget
     runs-on: ubuntu-latest
     if: needs.publish-nuget.outputs.published == 'true'
+    permissions:
+      contents: write
 
     steps:
     - name: Checkout
