wuchong opened a new pull request, #1312: URL: https://github.com/apache/fluss/pull/1312
Potential fix for [https://github.com/apache/fluss/security/code-scanning/1](https://github.com/apache/fluss/security/code-scanning/1) To fix the issue, add a `permissions` block to the workflow to explicitly restrict the permissions of the `GITHUB_TOKEN` to the minimum required. Since the workflow involves checking out the repository code and running commands, it likely only needs `contents: read`. No write permissions appear necessary for this workflow. The `permissions` block should be added at the root level of the workflow (directly under the `name` key) to apply to all jobs. This ensures consistent and minimal permissions across the entire workflow. --- _Suggested fixes powered by Copilot Autofix. Review carefully before merging._ -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: [email protected] For queries about this service, please contact Infrastructure at: [email protected]
