From 8f38b092853aa25a48e8453cd8f9f8c167c2bfe6 Mon Sep 17 00:00:00 2001
From: timmiesmith <timmie.smith@intel.com>
Date: Wed, 31 Jan 2024 16:58:04 -0600
Subject: [PATCH] Adding read-only permissions to all workflows to ensure
 minimum required access.

---
 .github/workflows/issue_labeler.yml | 2 ++
 .github/workflows/labeler.yml       | 2 ++
 2 files changed, 4 insertions(+)

diff --git a/.github/workflows/issue_labeler.yml b/.github/workflows/issue_labeler.yml
index 418d7baca1..89d04e6e47 100644
--- a/.github/workflows/issue_labeler.yml
+++ b/.github/workflows/issue_labeler.yml
@@ -19,6 +19,8 @@ on:
   pull_request:
     types: [opened, edited]
 
+permissions: read-all
+
 jobs:
   triage:
     runs-on: ubuntu-latest
diff --git a/.github/workflows/labeler.yml b/.github/workflows/labeler.yml
index 8dbb096247..273cba63da 100644
--- a/.github/workflows/labeler.yml
+++ b/.github/workflows/labeler.yml
@@ -15,6 +15,8 @@ name: "Pull Request Labeler"
 on:
   - pull_request_target
 
+permissions: read-all
+
 jobs:
   triage:
     permissions: