From 34c40f811de04bdee706f7117edbd9f79b74b394 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Lu=C3=ADs=20Portela=20Afonso?= <luis.portela@ydata.ai>
Date: Wed, 17 Jul 2024 15:27:45 +0100
Subject: [PATCH] chore(actions): set sbom-action to 0.17.0 and add permission

---
 .github/workflows/pull-request.yaml | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/.github/workflows/pull-request.yaml b/.github/workflows/pull-request.yaml
index 4bf1b38..b98be48 100644
--- a/.github/workflows/pull-request.yaml
+++ b/.github/workflows/pull-request.yaml
@@ -18,6 +18,7 @@ env:
 
 
 permissions:
+  actions: read
   id-token: write
   contents: read
   packages: read
@@ -71,7 +72,7 @@ jobs:
     - uses: actions/checkout@v4
 
     - name: Create SBOM
-      uses: anchore/sbom-action@v0
+      uses: anchore/sbom-action@v0.17.0
       with:
         upload-artifact-retention: 1
         format: cyclonedx-json