From d82c663e5f8feb512f14f95abd2afa21a761a70a Mon Sep 17 00:00:00 2001 From: Carl Tashian Date: Mon, 2 Mar 2026 18:28:25 -0800 Subject: [PATCH] Add security-events: write for SARIF upload The zizmor-action uploads results to GitHub Advanced Security by default, which requires security-events: write permission. Co-Authored-By: Claude Opus 4.6 --- .github/workflows/zizmor.yml | 1 + 1 file changed, 1 insertion(+) diff --git a/.github/workflows/zizmor.yml b/.github/workflows/zizmor.yml index 59914c3..bf7799d 100644 --- a/.github/workflows/zizmor.yml +++ b/.github/workflows/zizmor.yml @@ -8,6 +8,7 @@ jobs: runs-on: ubuntu-latest permissions: contents: read + security-events: write steps: - uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2 with: