Worked on the equinor/energyvision repository to implement automated workflow content read permissions across multiple GitHub workflows, focusing on enforcing a least-privilege security model. Leveraging CI/CD and DevOps practices, the developer used YAML and GitHub Actions to restrict automated access to repository contents, ensuring each workflow—such as accessibility checks, code analysis, dataset backups, Algolia indexing, Fotoware redirects, Azure setup, and wiki notifications—had only the necessary permissions. This approach reduced security risks and improved traceability of automated processes. The work enhanced automation reliability and governance, aligning workflow automation with organizational security standards while maintaining essential functionality for ongoing development.