From 76ddfcca2ffb22510462baaf4db20c7c43319726 Mon Sep 17 00:00:00 2001
From: Kelly Thomas Reardon <ktr3223@pm.me>
Date: Sun, 10 May 2026 22:22:38 -0500
Subject: [PATCH] SAST config update

---
 .gitea/workflows/docker-build.yaml | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/.gitea/workflows/docker-build.yaml b/.gitea/workflows/docker-build.yaml
index 379bb76..68039d8 100644
--- a/.gitea/workflows/docker-build.yaml
+++ b/.gitea/workflows/docker-build.yaml
@@ -8,6 +8,9 @@ on:
 jobs:
   build:
     runs-on: ubuntu-latest
+    permissions:  
+      contents: read          # Required to checkout and read repo files
+      security-events: write  # Required to upload SARIF files to Security tab
 
     steps:
       - name: Checkout