From c5714bb3b2b630e9b37759987d1c5076f9c410aa Mon Sep 17 00:00:00 2001
From: Daniel Chalef <131175+danielchalef@users.noreply.github.com>
Date: Thu, 30 Oct 2025 19:49:48 -0700
Subject: [PATCH] Potential fix for code scanning alert no. 24: Workflow does
 not contain permissions (#1036)

* Potential fix for code scanning alert no. 24: Workflow does not contain permissions

Co-authored-by: Copilot Autofix powered by AI <62310815+github-advanced-security[bot]@users.noreply.github.com>

* Update .github/workflows/claude-code-review.yml

---------

Co-authored-by: Copilot Autofix powered by AI <62310815+github-advanced-security[bot]@users.noreply.github.com>
---
 .github/workflows/claude-code-review.yml | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/.github/workflows/claude-code-review.yml b/.github/workflows/claude-code-review.yml
index cede3e17..47c714ee 100644
--- a/.github/workflows/claude-code-review.yml
+++ b/.github/workflows/claude-code-review.yml
@@ -7,6 +7,9 @@ on:
 jobs:
   check-fork:
     runs-on: ubuntu-latest
+    permissions:
+      contents: read
+      pull-requests: write
     outputs:
       is_fork: ${{ steps.check.outputs.is_fork }}
     steps: