id,node_id,number,state,locked,title,user,user_label,body,created_at,updated_at,closed_at,merged_at,merge_commit_sha,assignee,assignee_label,milestone,milestone_label,draft,head,base,author_association,repo,repo_label,url,merged_by,merged_by_label,auto_merge
928210171,PR_kwDOBm6k_c43U1z7,1740,closed,0,chore: Set permissions for GitHub actions,172697,naveensrinivasan," Restrict the GitHub token permissions only to the required ones; this way, even if the attackers will succeed in compromising your workflow, they won’t be able to do much.

- Included permissions for the action. https://github.com/ossf/scorecard/blob/main/docs/checks.md#token-permissions

https://docs.github.com/en/actions/using-workflows/workflow-syntax-for-github-actions#permissions

https://docs.github.com/en/actions/using-jobs/assigning-permissions-to-jobs

[Keeping your GitHub Actions and workflows secure Part 1: Preventing pwn requests](https://securitylab.github.com/research/github-actions-preventing-pwn-requests/)

Signed-off-by: naveen <172697+naveensrinivasan@users.noreply.github.com>
",2022-05-05T01:03:08Z,2022-05-31T19:28:41Z,2022-05-31T19:28:40Z,2022-05-31T19:28:40Z,2e9751672d4fe329b3c359d5b7b1992283185820,,,,,0,f76fce5fd2bacadf2f46656e32093c6d639270c9,280ff372ab30df244f6c54f6f3002da57334b3d7,CONTRIBUTOR,107914493,datasette,https://github.com/simonw/datasette/pull/1740,,,