docs(github): Explain what security-events: write is needed for

Signed-off-by: Sebastian Schuberth <sebastian@doubleopen.org>
oss-review-toolkit · Jul 11, 2024 · 1ae222a · 1ae222a
1 parent 57911fe
commit 1ae222a
Show file tree

Hide file tree

Showing 2 changed files with 3 additions and 0 deletions.
diff --git a/.github/workflows/build-and-test.yml b/.github/workflows/build-and-test.yml
@@ -29,6 +29,7 @@ jobs:
     needs: build
     runs-on: ubuntu-22.04
     permissions:
+      # Needed for SARIF scanning upload.
       security-events: write
     steps:
     - name: Checkout Repository

diff --git a/.github/workflows/static-analysis.yml b/.github/workflows/static-analysis.yml
@@ -36,6 +36,7 @@ jobs:
   detekt-issues:
     runs-on: ubuntu-22.04
     permissions:
+      # Needed for SARIF scanning upload.
       security-events: write
     steps:
     - name: Checkout Repository
@@ -82,6 +83,7 @@ jobs:
     if: ${{ github.event_name == 'pull_request' }}
     runs-on: ubuntu-22.04
     permissions:
+      # Needed for SARIF scanning upload.
       security-events: write
     steps:
     - name: Checkout Repository