From d6fcc2bb1e832cd52a77e36681157e7a705e92de Mon Sep 17 00:00:00 2001
From: Frostebite <jas.f.ukcmti@gmail.com>
Date: Tue, 10 Mar 2026 08:10:02 +0000
Subject: [PATCH] Potential fix for code scanning alert no. 78: Workflow does
 not contain permissions

Co-authored-by: Copilot Autofix powered by AI <62310815+github-advanced-security[bot]@users.noreply.github.com>
---
 .github/workflows/validate-orchestrator.yml | 4 ++++
 1 file changed, 4 insertions(+)

diff --git a/.github/workflows/validate-orchestrator.yml b/.github/workflows/validate-orchestrator.yml
index e360e1ed..90dc8751 100644
--- a/.github/workflows/validate-orchestrator.yml
+++ b/.github/workflows/validate-orchestrator.yml
@@ -41,6 +41,10 @@ on:
       - 'yarn.lock'
       - '.github/workflows/validate-orchestrator.yml'
 
+permissions:
+  contents: read
+  packages: read
+
 concurrency:
   group: ${{ github.workflow }}-${{ github.event.pull_request.number || github.ref }}
   cancel-in-progress: true