From 98da39cae53d61d26c38a3c83d337fd7e90d36dd Mon Sep 17 00:00:00 2001
From: Amund Tenstad <github@amund.io>
Date: Tue, 10 Oct 2023 11:45:42 +0200
Subject: [PATCH 1/3] fix: no permissions by default

---
 .github/workflows/scorecards.yaml | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/.github/workflows/scorecards.yaml b/.github/workflows/scorecards.yaml
index ab0787a..70a08b3 100644
--- a/.github/workflows/scorecards.yaml
+++ b/.github/workflows/scorecards.yaml
@@ -15,8 +15,8 @@ on:
   push:
     branches: ["main"]
 
-# Declare default permissions as read only.
-permissions: read-all
+# Declare no permissions as default.
+permissions: {}
 
 jobs:
   analysis:

From 936a5e8432ba166a64e15453a506b827eae9c623 Mon Sep 17 00:00:00 2001
From: Amund Tenstad <github@amund.io>
Date: Tue, 10 Oct 2023 12:35:05 +0200
Subject: [PATCH 2/3] fix: content read by default

---
 .github/workflows/scorecards.yaml | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/.github/workflows/scorecards.yaml b/.github/workflows/scorecards.yaml
index 70a08b3..ef6e6cc 100644
--- a/.github/workflows/scorecards.yaml
+++ b/.github/workflows/scorecards.yaml
@@ -16,7 +16,8 @@ on:
     branches: ["main"]
 
 # Declare no permissions as default.
-permissions: {}
+permissions:
+  content: read
 
 jobs:
   analysis:

From b52afb09495702709fd9f3232ae16f2538251acb Mon Sep 17 00:00:00 2001
From: Amund Tenstad <github@amund.io>
Date: Tue, 10 Oct 2023 12:35:42 +0200
Subject: [PATCH 3/3] fix: remove incorrect doc

---
 .github/workflows/scorecards.yaml | 1 -
 1 file changed, 1 deletion(-)

diff --git a/.github/workflows/scorecards.yaml b/.github/workflows/scorecards.yaml
index ef6e6cc..c6fa195 100644
--- a/.github/workflows/scorecards.yaml
+++ b/.github/workflows/scorecards.yaml
@@ -15,7 +15,6 @@ on:
   push:
     branches: ["main"]
 
-# Declare no permissions as default.
 permissions:
   content: read