github
diff --git a/‎.github/workflows/__debug-artifacts.yml
+2 b/‎.github/workflows/__debug-artifacts.yml
+2
diff --git a/‎.github/workflows/__extractor-ram-threads.yml
+2 b/‎.github/workflows/__extractor-ram-threads.yml
+2
diff --git a/‎.github/workflows/__go-custom-queries.yml
+2 b/‎.github/workflows/__go-custom-queries.yml
+2
diff --git a/‎.github/workflows/__go-custom-tracing-autobuild.yml
+2 b/‎.github/workflows/__go-custom-tracing-autobuild.yml
+2
diff --git a/‎.github/workflows/__go-custom-tracing.yml
+2 b/‎.github/workflows/__go-custom-tracing.yml
+2
diff --git a/‎.github/workflows/__javascript-source-root.yml
+2 b/‎.github/workflows/__javascript-source-root.yml
+2
diff --git a/‎.github/workflows/__multi-language-autodetect.yml
+2 b/‎.github/workflows/__multi-language-autodetect.yml
+2
diff --git a/‎.github/workflows/__packaging-config-inputs-js.yml
+2 b/‎.github/workflows/__packaging-config-inputs-js.yml
+2
diff --git a/‎.github/workflows/__packaging-config-js.yml
+2 b/‎.github/workflows/__packaging-config-js.yml
+2
diff --git a/‎.github/workflows/__packaging-inputs-js.yml
+2 b/‎.github/workflows/__packaging-inputs-js.yml
+2
diff --git a/‎.github/workflows/__remote-config.yml
+2 b/‎.github/workflows/__remote-config.yml
+2
diff --git a/‎.github/workflows/__rubocop-multi-language.yml
+2 b/‎.github/workflows/__rubocop-multi-language.yml
+2
diff --git a/‎.github/workflows/__split-workflow.yml
+2 b/‎.github/workflows/__split-workflow.yml
+2
diff --git a/‎.github/workflows/__test-local-codeql.yml
+2 b/‎.github/workflows/__test-local-codeql.yml
+2
diff --git a/‎.github/workflows/__test-proxy.yml
+2 b/‎.github/workflows/__test-proxy.yml
+2
diff --git a/‎.github/workflows/__test-ruby.yml
+2 b/‎.github/workflows/__test-ruby.yml
+2
diff --git a/‎.github/workflows/__unset-environment.yml
+2 b/‎.github/workflows/__unset-environment.yml
+2
diff --git a/‎pr-checks/sync.py
+3-1 b/‎pr-checks/sync.py
+3-1
@@ -23,7 +23,6 @@
 
 """
 
-
 class NonAliasingRTRepresenter(ruamel.yaml.representer.RoundTripRepresenter):
     def ignore_aliases(self, data):
         return True
@@ -71,6 +70,9 @@ def writeHeader(checkStream):
             }
         },
         'name': checkSpecification['name'],
+        'permissions': {
+            'security-events': 'write'
+        },
         'runs-on': '${{ matrix.os }}',
         'steps': steps
     }