GitHub Actions – Updating the default GITHUB_TOKEN permissions to read-only githubactionsworkflows February 2, 2023 Previously, GitHub Actions gets a GITHUB_TOKEN with both read/write permissions by default whenever Actions is enabled on a repository. As a default, this is too permissive, so to improve security we would like to change the default going forward to a read-only token. You can still f
![GitHub Actions - Updating the default GITHUB_TOKEN permissions to read-only](https://cdn-ak-scissors.b.st-hatena.com/image/square/912bb1e7f2ca8e2f98cc813c91412e64c8461717/height=288;version=1;width=512/https%3A%2F%2Fgithub.blog%2Fwp-content%2Fuploads%2F2022%2F04%2FEngineering-Security.png%3Ffit%3D1200%252C630)