Use minimum permissions for github token in PR workflows #8576
sunjayBhatiacodeql-analysis.yml
on: pull_request
CodeQL-Build
7m 49s
Annotations
2 warnings
|
CodeQL-Build
This run of the CodeQL Action does not have permission to access Code Scanning API endpoints. As a result, it will not be opted into any experimental features. This could be because the Action is running on a pull request from a fork. If not, please ensure the Action has the 'security-events: write' permission. Details: Resource not accessible by integration
|
|
CodeQL-Build
Feature flags do not specify a default CLI version. Falling back to the CLI version shipped with the Action. This is 2.15.5.
|