From 6145432177f56dd314f2a3a8d4ef9f8f04cbc5d7 Mon Sep 17 00:00:00 2001
From: Henry McConville <henry.mcconville@dojo.tech>
Date: Tue, 30 Apr 2024 11:28:32 +0100
Subject: [PATCH] Add trivy workflow permissions

---
 .github/workflows/container-scan.yml | 5 +++++
 1 file changed, 5 insertions(+)

diff --git a/.github/workflows/container-scan.yml b/.github/workflows/container-scan.yml
index 022586a..f0e3b56 100644
--- a/.github/workflows/container-scan.yml
+++ b/.github/workflows/container-scan.yml
@@ -8,6 +8,11 @@ jobs:
   container-scan:
     name: Container Scan
     runs-on: ubuntu-latest
+    permissions:
+      security-events: write
+      actions: read
+      contents: read
+
     steps:
       - name: Checkout code
         uses: actions/checkout@v4