From f905c11229f567ef9af8bfd869fd71278315e4e2 Mon Sep 17 00:00:00 2001
From: Adnan Khan <AdnaneKhan@users.noreply.github.com>
Date: Tue, 21 Oct 2025 16:46:36 -0400
Subject: [PATCH 1/2] ci: scope down permissions for stale_issues.yml

---
 .github/workflows/stale_issues.yml | 4 ++++
 1 file changed, 4 insertions(+)

diff --git a/.github/workflows/stale_issues.yml b/.github/workflows/stale_issues.yml
index 1156d97..cd51ff1 100644
--- a/.github/workflows/stale_issues.yml
+++ b/.github/workflows/stale_issues.yml
@@ -5,6 +5,10 @@ on:
   schedule:
   - cron: "0 0 * * *"
 
+permissions:
+  issues: write
+  pull-requests: write
+
 jobs:
   cleanup:
     runs-on: ubuntu-latest

From 5ad727bd88b0c4d97ec4e9ecabcb324e22505b18 Mon Sep 17 00:00:00 2001
From: Adnan Khan <AdnaneKhan@users.noreply.github.com>
Date: Tue, 21 Oct 2025 16:46:38 -0400
Subject: [PATCH 2/2] ci: scope down permissions for closed-issue-message.yml

---
 .github/workflows/closed-issue-message.yml | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/.github/workflows/closed-issue-message.yml b/.github/workflows/closed-issue-message.yml
index 3340afb..11d5a82 100644
--- a/.github/workflows/closed-issue-message.yml
+++ b/.github/workflows/closed-issue-message.yml
@@ -2,6 +2,9 @@ name: Closed Issue Message
 on:
     issues:
        types: [closed]
+permissions:
+  issues: write
+
 jobs:
     auto_comment:
         runs-on: ubuntu-latest