From 4c420996615accf6afa8d8e09bc0b9718fbd1bb2 Mon Sep 17 00:00:00 2001
From: zhom <2717306+zhom@users.noreply.github.com>
Date: Tue, 3 Jun 2025 15:33:45 +0400
Subject: [PATCH] fix: osv permissions

---
 .github/workflows/osv.yml       | 3 +--
 .github/workflows/pr-checks.yml | 3 +--
 2 files changed, 2 insertions(+), 4 deletions(-)

diff --git a/.github/workflows/osv.yml b/.github/workflows/osv.yml
index d972828..4d28b81 100644
--- a/.github/workflows/osv.yml
+++ b/.github/workflows/osv.yml
@@ -44,10 +44,9 @@ on:
       - "nodecar/package-lock.json"
 
 permissions:
-  # Require writing security events to upload SARIF file to security tab
   security-events: write
-  # Read commit contents
   contents: read
+  actions: read
 
 jobs:
   scan-scheduled:
diff --git a/.github/workflows/pr-checks.yml b/.github/workflows/pr-checks.yml
index 67ce2cb..f611a8f 100644
--- a/.github/workflows/pr-checks.yml
+++ b/.github/workflows/pr-checks.yml
@@ -7,10 +7,9 @@ on:
     branches: ["main"]
 
 permissions:
-  # Required for OSV scanner to upload SARIF file to security tab
   security-events: write
-  # Read commit contents
   contents: read
+  actions: read
 
 jobs:
   lint-js: