From a6cc02478292854fdfd210aa5a81f354fddeedf2 Mon Sep 17 00:00:00 2001
From: Emmanuel K <emmanuel@devopsabcs.com>
Date: Thu, 13 Feb 2025 21:18:34 -0500
Subject: [PATCH] still missing

---
 .../workflows/devopsshield-cst-chain-bench.yml  | 17 ++++++++++++-----
 1 file changed, 12 insertions(+), 5 deletions(-)

diff --git a/.github/workflows/devopsshield-cst-chain-bench.yml b/.github/workflows/devopsshield-cst-chain-bench.yml
index cda180e..42b6624 100644
--- a/.github/workflows/devopsshield-cst-chain-bench.yml
+++ b/.github/workflows/devopsshield-cst-chain-bench.yml
@@ -1,4 +1,4 @@
-# Last applied at: Fri, 14 Feb 2025 02:09:46 GMT
+# Last applied at: Fri, 14 Feb 2025 02:09:46 GMT
 # DevOps Shield - The ultimate DevSecOps platform designed to secure your DevOps.
 # https://devopsshield.com
 ##############################################################
@@ -46,11 +46,18 @@ jobs:
 
     runs-on: ubuntu-latest
 
+    # It is required to provide an access token with permission to these scopes: repo(all), read:repo_hook, admin:org_hook, read:org
     permissions:
-      # It is required to provide an access token with permission to these scopes: repo(all), read:repo_hook, admin:org_hook, read:org
-      contents: read # for actions/checkout to fetch code
-      security-events: write # for github/codeql-action/upload-sarif to upload SARIF results
-      actions: read # only required for a private repository by github/codeql-action/upload-sarif to get the Action run status
+      contents: read
+      issues: read
+      pull-requests: read
+      repository-projects: read
+      security-events: read
+      statuses: read
+      discussions: read
+      packages: read
+      pages: read
+      deployments: read
 
     steps:
       - name: Chain Bench