From af705a418dcfbfda00b9a581d7b38b9ec8c4e5e1 Mon Sep 17 00:00:00 2001
From: Adnan Khan <AdnaneKhan@users.noreply.github.com>
Date: Mon, 20 Oct 2025 18:02:44 -0400
Subject: [PATCH] Scope down GitHub token permissions for test-license-scan.yml

---
 .github/workflows/test-license-scan.yml | 4 ++++
 1 file changed, 4 insertions(+)

diff --git a/.github/workflows/test-license-scan.yml b/.github/workflows/test-license-scan.yml
index 780a62cd..93d3172b 100644
--- a/.github/workflows/test-license-scan.yml
+++ b/.github/workflows/test-license-scan.yml
@@ -6,6 +6,10 @@ on:
         paths:
             - "license-scan/**"
             - ".github/workflows/test-license-scan.yml"
+
+permissions:
+  contents: read
+
 jobs:
     build:
         runs-on: