From 1defa441d6088c73b7d184fc7a2a1a9aaaa493ff Mon Sep 17 00:00:00 2001
From: Anthony Stirling <77850077+Frooodle@users.noreply.github.com>
Date: Sat, 21 Dec 2024 14:31:25 +0000
Subject: [PATCH 1/2] Update scorecards.yml

---
 .github/workflows/scorecards.yml | 10 +++++++++-
 1 file changed, 9 insertions(+), 1 deletion(-)

diff --git a/.github/workflows/scorecards.yml b/.github/workflows/scorecards.yml
index d64327a2..f305074d 100644
--- a/.github/workflows/scorecards.yml
+++ b/.github/workflows/scorecards.yml
@@ -15,7 +15,15 @@ on:
     branches: ["main"]
 
 # Declare default permissions as read only.
-permissions: read-all
+permissions:
+  # Needs to be read-all for general access
+  contents: read
+  security-events: write  # For uploading security results
+  id-token: write        # For publishing results
+  actions: read
+  issues: read
+  pull-requests: read
+  checks: read
 
 jobs:
   analysis:

From 238db1aaff15cab5571ecf48879afb0fc8e85d3e Mon Sep 17 00:00:00 2001
From: Anthony Stirling <77850077+Frooodle@users.noreply.github.com>
Date: Sat, 21 Dec 2024 14:34:29 +0000
Subject: [PATCH 2/2] Update scorecards.yml

---
 .github/workflows/scorecards.yml | 12 +-----------
 1 file changed, 1 insertion(+), 11 deletions(-)

diff --git a/.github/workflows/scorecards.yml b/.github/workflows/scorecards.yml
index f305074d..7c67832b 100644
--- a/.github/workflows/scorecards.yml
+++ b/.github/workflows/scorecards.yml
@@ -13,17 +13,7 @@ on:
     - cron: '20 7 * * 2'
   push:
     branches: ["main"]
-
-# Declare default permissions as read only.
-permissions:
-  # Needs to be read-all for general access
-  contents: read
-  security-events: write  # For uploading security results
-  id-token: write        # For publishing results
-  actions: read
-  issues: read
-  pull-requests: read
-  checks: read
+permissions: read-all
 
 jobs:
   analysis: