From 70df6da05b1ef7d6ee321e1c29751ef135bcaa48 Mon Sep 17 00:00:00 2001
From: StepSecurity Bot <bot@stepsecurity.io>
Date: Thu, 16 Nov 2023 13:55:18 +0000
Subject: [PATCH] [StepSecurity] ci: Harden GitHub Actions

Signed-off-by: StepSecurity Bot <bot@stepsecurity.io>
---
 .github/workflows/e2e.yml        | 3 +++
 .github/workflows/weekly_e2e.yml | 3 +++
 2 files changed, 6 insertions(+)

diff --git a/.github/workflows/e2e.yml b/.github/workflows/e2e.yml
index 629c8ccd..22906b97 100644
--- a/.github/workflows/e2e.yml
+++ b/.github/workflows/e2e.yml
@@ -5,6 +5,9 @@ on:
     - master
   pull_request:
 
+permissions:
+  contents: read
+
 jobs:
 
   e2e:
diff --git a/.github/workflows/weekly_e2e.yml b/.github/workflows/weekly_e2e.yml
index d0badaf9..06ce9479 100644
--- a/.github/workflows/weekly_e2e.yml
+++ b/.github/workflows/weekly_e2e.yml
@@ -10,6 +10,9 @@ on:
     - master
     paths:
       - '**weekly_e2e.yml'
+permissions:
+  contents: read
+
 jobs:
 
   vpp_latest: