From 1bccb18e6bbcc828bea0b3cdec12a9a4d65d71dc Mon Sep 17 00:00:00 2001
From: Gareth <garethgeorge97@gmail.com>
Date: Wed, 11 Mar 2026 14:33:55 -0700
Subject: [PATCH] Potential fix for code scanning alert no. 35: Workflow does
 not contain permissions

Co-authored-by: Copilot Autofix powered by AI <62310815+github-advanced-security[bot]@users.noreply.github.com>
---
 .github/workflows/reusable-release.yml | 6 ++++++
 1 file changed, 6 insertions(+)

diff --git a/.github/workflows/reusable-release.yml b/.github/workflows/reusable-release.yml
index d8e8ac3d..4e203129 100644
--- a/.github/workflows/reusable-release.yml
+++ b/.github/workflows/reusable-release.yml
@@ -17,6 +17,8 @@ on:
 
 jobs:
   goreleaser:
+    permissions:
+      contents: read
     runs-on: ubuntu-latest
     steps:
       - uses: actions/checkout@v4
@@ -78,6 +80,8 @@ jobs:
     name: Windows installers
     needs: [goreleaser]
     runs-on: windows-2022
+    permissions:
+      contents: write
 
     steps:
       - name: Checkout
@@ -161,6 +165,8 @@ jobs:
   macos-bundle:
     name: macOS app bundle (${{ matrix.goarch }})
     runs-on: macos-latest
+    permissions:
+      contents: write
     strategy:
       matrix:
         goarch: [amd64, arm64]