From 07c894f89eef1a459a2fe81c1fbbc21a47c5a2c9 Mon Sep 17 00:00:00 2001
From: Brett Logan <lindluni@github.com>
Date: Tue, 20 Dec 2022 17:31:13 -0500
Subject: [PATCH] Add explicit permissions

Signed-off-by: Brett Logan <lindluni@github.com>
---
 .github/workflows/deploy-production.yml | 3 +++
 .github/workflows/deploy-release.yml    | 3 +++
 2 files changed, 6 insertions(+)

diff --git a/.github/workflows/deploy-production.yml b/.github/workflows/deploy-production.yml
index 5d0c38e5..6431318d 100644
--- a/.github/workflows/deploy-production.yml
+++ b/.github/workflows/deploy-production.yml
@@ -9,6 +9,9 @@ jobs:
   build:
     name: Build, test, and eventually push the container image
     runs-on: ubuntu-latest
+    permissions:
+      contents: read
+      packages: write
     strategy:
       fail-fast: false
       matrix:
diff --git a/.github/workflows/deploy-release.yml b/.github/workflows/deploy-release.yml
index a7b13a2e..6da57180 100644
--- a/.github/workflows/deploy-release.yml
+++ b/.github/workflows/deploy-release.yml
@@ -15,6 +15,9 @@ jobs:
   build:
     name: Deploy container image - Release
     runs-on: ubuntu-latest
+    permissions:
+      contents: read
+      packages: write
     strategy:
       fail-fast: false
       matrix: