Skip to main content

GA-L013: Permissions error

Error Security

Why This Matters

The `permissions:` configuration contains an invalid scope or access level. Valid scopes include actions, checks, contents, deployments, id-token, issues, packages, pages, pull-requests, repository-projects, security-events, and statuses. Access levels must be read, write, or none.

How to Fix

Use valid permission scopes and access levels.

Before (incorrect)

permissions:
  contens: read
  issues: execute

After (correct)

permissions:
  contents: read
  issues: write

Rule Details

Rule Code
GA-L013
Severity
Error
Category
Security

Related Rules

GA-L011 Error

Credentials leak
GA-C001 Warning

Unpinned action version
GA-C002 Warning

Mutable action tag
GA-C003 Warning

Overly permissive permissions
GA-C005 Warning

Script injection risk