From 3150a61af657bd3118b07197d9f33b08f46a1fc7 Mon Sep 17 00:00:00 2001
From: "copilot-swe-agent[bot]" <198982749+Copilot@users.noreply.github.com>
Date: Thu, 10 Jul 2025 00:43:58 +0000
Subject: [PATCH 1/2] Initial plan


From 3f7ef59941501716ae70f06a7a843c01ca18a67d Mon Sep 17 00:00:00 2001
From: "copilot-swe-agent[bot]" <198982749+Copilot@users.noreply.github.com>
Date: Thu, 10 Jul 2025 00:47:15 +0000
Subject: [PATCH 2/2] Add security-events: write permissions to CodeQL analysis
 jobs

Co-authored-by: trask <218610+trask@users.noreply.github.com>
---
 auto-merge/contrib/.github/workflows/codeql-analysis.yml | 2 ++
 auto-merge/js/.github/workflows/codeql-analysis.yml      | 2 ++
 2 files changed, 4 insertions(+)

diff --git a/auto-merge/contrib/.github/workflows/codeql-analysis.yml b/auto-merge/contrib/.github/workflows/codeql-analysis.yml
index 317759ac5..81bc429b6 100644
--- a/auto-merge/contrib/.github/workflows/codeql-analysis.yml
+++ b/auto-merge/contrib/.github/workflows/codeql-analysis.yml
@@ -17,6 +17,8 @@ on:
 jobs:
   CodeQL-Build:
     runs-on: ubuntu-latest
+    permissions:
+      security-events: write
 
     steps:
       - name: Checkout repository
diff --git a/auto-merge/js/.github/workflows/codeql-analysis.yml b/auto-merge/js/.github/workflows/codeql-analysis.yml
index f67b78fe0..90699e8a4 100644
--- a/auto-merge/js/.github/workflows/codeql-analysis.yml
+++ b/auto-merge/js/.github/workflows/codeql-analysis.yml
@@ -9,6 +9,8 @@ on:
 jobs:
   CodeQL-Build:
     runs-on: ubuntu-latest
+    permissions:
+      security-events: write
 
     steps:
       - name: Checkout repository