From 54a38d6adf1c0bebd9409d2915b52f33dd37ce90 Mon Sep 17 00:00:00 2001
From: Pravin Dahal <pravin.dahal@coop.no>
Date: Tue, 25 Feb 2025 11:17:47 +0100
Subject: [PATCH] chore: Add missing workflow permissions

---
 .github/workflows/security-scan.yaml | 5 +++++
 .github/workflows/techdocs.yaml      | 3 ---
 2 files changed, 5 insertions(+), 3 deletions(-)

diff --git a/.github/workflows/security-scan.yaml b/.github/workflows/security-scan.yaml
index a412e49..475085e 100644
--- a/.github/workflows/security-scan.yaml
+++ b/.github/workflows/security-scan.yaml
@@ -9,3 +9,8 @@ jobs:
     name: Supply Chain
     uses: coopnorge/github-workflow-supply-chain-security-validation/.github/workflows/supply-chain-security-validation.yaml@main
     secrets: inherit
+    permissions:
+      contents: read
+      actions: read
+      packages: read
+      security-events: write
diff --git a/.github/workflows/techdocs.yaml b/.github/workflows/techdocs.yaml
index aef89b3..31f0806 100644
--- a/.github/workflows/techdocs.yaml
+++ b/.github/workflows/techdocs.yaml
@@ -1,4 +1,3 @@
----
 on:
   workflow_call:
     inputs:
@@ -31,8 +30,6 @@ jobs:
     runs-on: ubuntu-latest
     permissions:
       contents: read
-      id-token: write
-      packages: read
       pull-requests: read
     outputs:
       changed-markdown-files: ${{ steps.paths-filter.outputs.markdown_files }}