From 694e2892ac4ab096df707be2529c38b2e0a068fc Mon Sep 17 00:00:00 2001
From: pputman12 <putman.patrick@gmail.com>
Date: Fri, 13 Sep 2024 08:30:29 -0500
Subject: [PATCH 1/2] adding permissions to protocol-devchain-anvil.yml
 workflow

---
 .github/workflows/protocol-devchain-anvil.yml | 5 +++++
 1 file changed, 5 insertions(+)

diff --git a/.github/workflows/protocol-devchain-anvil.yml b/.github/workflows/protocol-devchain-anvil.yml
index 3fa4e8f4d30..e0344af0877 100644
--- a/.github/workflows/protocol-devchain-anvil.yml
+++ b/.github/workflows/protocol-devchain-anvil.yml
@@ -17,6 +17,8 @@ on:
         required: true
         type: string
 
+
+
 env:
   # Increment these to force cache rebuilding
   FOUNDRY_CACHE_KEY: 1
@@ -24,6 +26,9 @@ env:
   SUPPORTED_FOUNDRY_VERSION: ${{ vars.SUPPORTED_FOUNDRY_VERSION }}
   ANVIL_PORT: 8546
 
+permissions:
+  contents: read
+
 jobs:
   build:
     defaults:

From e8fd1157eeb6fa741bd0523b26a873570353338e Mon Sep 17 00:00:00 2001
From: pputman12 <putman.patrick@gmail.com>
Date: Tue, 10 Dec 2024 16:49:49 -0600
Subject: [PATCH 2/2] update upload-artifact action to version 4 due to EOL

---
 .github/workflows/scorecard.yml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/.github/workflows/scorecard.yml b/.github/workflows/scorecard.yml
index cbbb304672c..bba1f2ec544 100644
--- a/.github/workflows/scorecard.yml
+++ b/.github/workflows/scorecard.yml
@@ -59,7 +59,7 @@ jobs:
       # Upload the results as artifacts (optional). Commenting out will disable uploads of run results in SARIF
       # format to the repository Actions tab.
       - name: "Upload artifact"
-        uses: actions/upload-artifact@97a0fba1372883ab732affbe8f94b823f91727db # v3.pre.node20
+        uses: actions/upload-artifact@v4
         with:
           name: SARIF file
           path: results.sarif