From 4cf30b79aaeade3a62cc1d774e24a1ab3a83d015 Mon Sep 17 00:00:00 2001
From: Alex <aleksandrosansan@gmail.com>
Date: Sun, 25 Sep 2022 16:31:58 +0200
Subject: [PATCH] build: harden tox.yml permissions

Signed-off-by: Alex <aleksandrosansan@gmail.com>
---
 .github/workflows/tox.yml | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/.github/workflows/tox.yml b/.github/workflows/tox.yml
index f6199e20..455a6a07 100644
--- a/.github/workflows/tox.yml
+++ b/.github/workflows/tox.yml
@@ -1,5 +1,7 @@
 name: tox
 on: [push, pull_request]
+permissions:
+  contents: read # to fetch code (actions/checkout)
 jobs:
   tox:
     strategy: