From 0393a4a389d77e1e19320565e66b768ae3a6c238 Mon Sep 17 00:00:00 2001
From: Avgustin Marinov <Avgustin.Marinov@bosch.com>
Date: Thu, 9 Jan 2025 13:46:12 +0200
Subject: [PATCH] Try to fix trivy with permissions (#2181)

* fix_trivy_scan_2_rolbak_action

* Try to fix trivy with permissions

Signed-off-by: Avgustin Marinov <Avgustin.Marinov@bosch.com>

---------

Signed-off-by: Avgustin Marinov <Avgustin.Marinov@bosch.com>
---
 .github/workflows/trivy-scan.yml | 4 ++++
 1 file changed, 4 insertions(+)

diff --git a/.github/workflows/trivy-scan.yml b/.github/workflows/trivy-scan.yml
index 4951d1af2..5dcf51a5d 100644
--- a/.github/workflows/trivy-scan.yml
+++ b/.github/workflows/trivy-scan.yml
@@ -11,6 +11,10 @@ jobs:
   scan:
     runs-on: ubuntu-latest
 
+    # seems needed for github/codeql-action/upload-sarif
+    permissions:
+      actions: write
+
     steps:
       - name: Checkout code
         uses: actions/checkout@v4