From deb91a21317a0ccbc84abb2ae27ad0343e2eea49 Mon Sep 17 00:00:00 2001
From: Ryan William West <107317815+Kramer0x0@users.noreply.github.com>
Date: Fri, 2 Feb 2024 16:22:26 -0800
Subject: [PATCH] Overwriting permissions on security related jobs (#5762)

Signed-off-by: Ryan West <rwest2@apple.com>
---
 .github/workflows/test-build-deploy.yml | 4 ++++
 1 file changed, 4 insertions(+)

diff --git a/.github/workflows/test-build-deploy.yml b/.github/workflows/test-build-deploy.yml
index 0877558ae2..cdb2b3c6ec 100644
--- a/.github/workflows/test-build-deploy.yml
+++ b/.github/workflows/test-build-deploy.yml
@@ -59,6 +59,10 @@ jobs:
   security:
     name: CodeQL
     runs-on: ubuntu-20.04
+    permissions:
+      actions: read
+      contents: read
+      security-events: write
     steps:
       - name: Checkout repository
         uses: actions/checkout@v4