From c709994d279aafa6a80c7f1be9f98e8338c15e96 Mon Sep 17 00:00:00 2001
From: Andrew Eisenberg <aeisenberg@github.com>
Date: Fri, 16 Feb 2024 15:09:31 -0800
Subject: [PATCH 1/2] Add permissions info to README

---
 README.md | 4 ++++
 1 file changed, 4 insertions(+)

diff --git a/README.md b/README.md
index 261cdec30..43a343a40 100644
--- a/README.md
+++ b/README.md
@@ -16,6 +16,10 @@ We recommend using default setup to configure CodeQL analysis for your repositor
 
 You can also configure advanced setup for a repository to find security vulnerabilities in your code using a highly customizable code scanning configuration. For more information, see "[Configuring advanced setup for code scanning](https://docs.github.com/en/code-security/code-scanning/creating-an-advanced-setup-for-code-scanning/configuring-advanced-setup-for-code-scanning)" and "[Customizing your advanced setup for code scanning](https://docs.github.com/en/code-security/code-scanning/creating-an-advanced-setup-for-code-scanning/customizing-your-advanced-setup-for-code-scanning)."
 
+### Permissions
+
+All advanced setup Code Scanning workflows must have the `security-events: write` permission. Workflows in private repositories muse additionally have the `contents: read` permission. For more information, see [Assigning permissions to jobs](https://docs.github.com/en/actions/using-jobs/assigning-permissions-to-jobs).
+
 ## Supported versions of the CodeQL Action
 
 The following versions of the CodeQL Action are currently supported:

From 36c51ac2b5abbdffd22f44a746f1882962308885 Mon Sep 17 00:00:00 2001
From: Andrew Eisenberg <aeisenberg@github.com>
Date: Tue, 20 Feb 2024 10:46:27 -0800
Subject: [PATCH 2/2] Capitalize Code Scanning

Co-authored-by: Henry Mercer <henrymercer@github.com>
---
 README.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/README.md b/README.md
index 43a343a40..6b2962fd3 100644
--- a/README.md
+++ b/README.md
@@ -18,7 +18,7 @@ You can also configure advanced setup for a repository to find security vulnerab
 
 ### Permissions
 
-All advanced setup Code Scanning workflows must have the `security-events: write` permission. Workflows in private repositories muse additionally have the `contents: read` permission. For more information, see [Assigning permissions to jobs](https://docs.github.com/en/actions/using-jobs/assigning-permissions-to-jobs).
+All advanced setup code scanning workflows must have the `security-events: write` permission. Workflows in private repositories muse additionally have the `contents: read` permission. For more information, see [Assigning permissions to jobs](https://docs.github.com/en/actions/using-jobs/assigning-permissions-to-jobs).
 
 ## Supported versions of the CodeQL Action