From 13e8d9f21204b7fb43174fec29b31ae56ed5bfc1 Mon Sep 17 00:00:00 2001
From: Jonas Wanke <contact@jonas-wanke.com>
Date: Thu, 13 Jul 2023 17:23:15 +0200
Subject: [PATCH] Reduce PR job permissions

---
 .github/workflows/pr.yml | 5 +----
 1 file changed, 1 insertion(+), 4 deletions(-)

diff --git a/.github/workflows/pr.yml b/.github/workflows/pr.yml
index c47d231..4f890dd 100644
--- a/.github/workflows/pr.yml
+++ b/.github/workflows/pr.yml
@@ -6,8 +6,6 @@ jobs:
   assign-author:
     if: github.event.action == 'opened'
     runs-on: ubuntu-latest
-    permissions:
-      pull-requests: write
     steps:
       - uses: samspills/assign-pr-to-author@v1.0.2
         with:
@@ -17,8 +15,7 @@ jobs:
     if: github.event.action == 'opened' && github.event.pull_request.user.login == 'dependabot[bot]'
     runs-on: ubuntu-latest
     permissions:
-      contents: read
-      pull-requests: write
+      pull-requests: read
     steps:
       - uses: dependabot/fetch-metadata@v1.6.0
         id: dependabot-metadata