Skip to content
Latchkey

GITHUB_TOKEN Permissions - CI/CD Glossary Definition

GITHUB_TOKEN permissions set what the auto-generated workflow token is allowed to do.

GITHUB_TOKEN permissions are the permissions: scopes granted to the automatic token each workflow run receives, controlling what API actions the run may perform.

Declaring permissions: at the workflow or job level narrows the token from its default scopes; setting contents: read and adding only what is needed follows least-privilege.

Related guides

Run this faster and cheaper on Latchkey managed runners. Start free →