From 0ad95526de849a1fe1fa3fcaa2f70c2d61a5d818 Mon Sep 17 00:00:00 2001
From: Daniel Milnes <daniel.milnes@lmax.com>
Date: Wed, 15 Feb 2023 16:48:09 +0000
Subject: [PATCH 1/3] Add permissions specification for CodeQL

---
 .github/workflows/codeql-analysis.yml | 10 +++++++++-
 1 file changed, 9 insertions(+), 1 deletion(-)

diff --git a/.github/workflows/codeql-analysis.yml b/.github/workflows/codeql-analysis.yml
index 08ec80a98..9a3d29976 100644
--- a/.github/workflows/codeql-analysis.yml
+++ b/.github/workflows/codeql-analysis.yml
@@ -12,23 +12,31 @@ jobs:
   analyze:
     name: Analyze
     runs-on: ubuntu-latest
+    permissions:
+      actions: read
+      contents: read
+      security-events: write
     strategy:
       fail-fast: false
       matrix:
         language: [ 'java' ]
     steps:
     - name: Checkout repository
-      uses: actions/checkout@v2
+      uses: actions/checkout@v3
+
     - name: Initialize CodeQL
       uses: github/codeql-action/init@v2
       with:
         languages: ${{ matrix.language }}
+
     - name: Set up JDK 11
       uses: actions/setup-java@v2
       with:
         java-version: 11
         distribution: 'zulu'
+
     - name: Autobuild
       uses: github/codeql-action/autobuild@v2
+
     - name: Perform CodeQL Analysis
       uses: github/codeql-action/analyze@v2

From ed78690288247e4c592d332b25da0e81189e29ea Mon Sep 17 00:00:00 2001
From: Daniel Milnes <daniel.milnes@lmax.com>
Date: Wed, 15 Feb 2023 16:57:04 +0000
Subject: [PATCH 2/3] Change to a maintained provider for GitHub Pages deploy

---
 .github/workflows/asciidoc.yml | 7 +++++--
 1 file changed, 5 insertions(+), 2 deletions(-)

diff --git a/.github/workflows/asciidoc.yml b/.github/workflows/asciidoc.yml
index 57b376de5..4573d5aad 100644
--- a/.github/workflows/asciidoc.yml
+++ b/.github/workflows/asciidoc.yml
@@ -4,6 +4,9 @@ on:
   push:
     branches: [ master ]
 
+permissions:
+  contents: write
+
 jobs:
   checkout-and-deploy:
     runs-on: ubuntu-latest
@@ -21,6 +24,6 @@ jobs:
       - name: Build ASCIIDoc with Gradle
         run: ./gradlew clean asciidoctor
       - name: Simple deploy with git
-        uses: rdarida/simple-github-pages-deploy-action@v1
+        uses: JamesIves/github-pages-deploy-action@v4
         with:
-          git-base-folder: build/docs/asciidoc/en/
+          folder: build/docs/asciidoc/en/

From b03e5f7ed5970b4fce0d7c863311b8c0d1a2d5d0 Mon Sep 17 00:00:00 2001
From: Daniel Milnes <daniel.milnes@lmax.com>
Date: Wed, 15 Feb 2023 16:57:39 +0000
Subject: [PATCH 3/3] Formatting

---
 .github/workflows/codeql-analysis.yml | 4 ----
 1 file changed, 4 deletions(-)

diff --git a/.github/workflows/codeql-analysis.yml b/.github/workflows/codeql-analysis.yml
index 9a3d29976..e19c8801c 100644
--- a/.github/workflows/codeql-analysis.yml
+++ b/.github/workflows/codeql-analysis.yml
@@ -23,20 +23,16 @@ jobs:
     steps:
     - name: Checkout repository
       uses: actions/checkout@v3
-
     - name: Initialize CodeQL
       uses: github/codeql-action/init@v2
       with:
         languages: ${{ matrix.language }}
-
     - name: Set up JDK 11
       uses: actions/setup-java@v2
       with:
         java-version: 11
         distribution: 'zulu'
-
     - name: Autobuild
       uses: github/codeql-action/autobuild@v2
-
     - name: Perform CodeQL Analysis
       uses: github/codeql-action/analyze@v2