diff --git a/.github/workflows/security_audit.yml b/.github/workflows/security_audit.yml
index 7a2cfe3..ce24b19 100644
--- a/.github/workflows/security_audit.yml
+++ b/.github/workflows/security_audit.yml
@@ -9,6 +9,9 @@ on:
 jobs:
   security_audit:
     runs-on: ubuntu-latest
+    permissions:
+      contents: read
+      security-events: write
     steps:
       - uses: actions/checkout@v1
       - uses: actions-rs/audit-check@v1