mirror of
https://github.com/tiennm99/litellm.git
synced 2026-07-10 17:04:47 +00:00
b9e79cc07b
GitHub Advanced Security flagged that the workflow had no permissions block, leaving GITHUB_TOKEN with its default broad scope. All write operations (git push, gh pr create) already use GH_TOKEN (PAT), so the implicit GITHUB_TOKEN only needs read access. Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>