Merge pull request #10 from codeplaysoftware/security-improvements

Security and Performance Improvements

Author: scottstraughan

.github/workflows/codeql.yml

@@ -8,22 +8,16 @@ on:
   schedule:
     - cron: '31 11 * * 2'
 
+permissions: read-all
+
 jobs:
   analyze:
     name: Analyze (${{ matrix.language }})
     runs-on: 'ubuntu-latest'
     timeout-minutes: 360
     permissions:
-      # required for all workflows
       security-events: write
 
-      # required to fetch internal or private CodeQL packs
-      packages: read
-
-      # only required for workflows in private repositories
-      actions: read
-      contents: read
-
     strategy:
       fail-fast: false
       matrix: