Merge pull request #236 from nicolasbock/alert-autofix-5

Potential fix for code scanning alert no. 5: Workflow does not contain permissions

Author: nicolasbock

.github/workflows/publish.yaml

@@ -9,6 +9,8 @@ jobs:
   build:
     runs-on: ubuntu-latest
     name: Publish PyPI Package
+    permissions:
+      contents: read
     steps:
       - name: Check out sources
         uses: actions/checkout@v4
@@ -44,6 +46,7 @@ jobs:
       name: pypi
       url: https://pypi.org/p/ebuildtester
     permissions:
+      contents: read
       id-token: write # IMPORTANT: mandatory for trusted publishing
 
     steps: