From 0065769eb1225a4bc7cd237704260689400dccb7 Mon Sep 17 00:00:00 2001
From: Scott Fryer <60462088+steelhead31@users.noreply.github.com>
Date: Tue, 28 May 2024 15:47:46 +0100
Subject: [PATCH] gha : Add permissions scheme (#3571)

---
 .github/workflows/semgrep_diff.yml | 4 ++++
 1 file changed, 4 insertions(+)

diff --git a/.github/workflows/semgrep_diff.yml b/.github/workflows/semgrep_diff.yml
index cb5f228812..ae8ad55a7b 100644
--- a/.github/workflows/semgrep_diff.yml
+++ b/.github/workflows/semgrep_diff.yml
@@ -3,6 +3,10 @@ name: Semgrep Differential Scan
 on:
   pull_request:
 
+permissions:
+  contents: read
+  statuses: write
+  
 jobs:
   semgrep-diff:
     uses: adoptium/.github/.github/workflows/semgrep_diff.yml@main