valitydev · renovate · Feb 12, 2026
diff --git a/.github/workflows/build.yml b/.github/workflows/build.yml
@@ -7,4 +7,4 @@
 
 jobs:
   build:
-    uses: valitydev/java-workflow/.github/workflows/maven-service-build.yml@v3
+    uses: valitydev/java-workflow/.github/workflows/maven-service-build.yml@v4
@@ -1,5 +1,8 @@
 name: Maven Build Artifact
+permissions:
+  contents: read
+
 on:
  pull_request:
    branches:
@@ -1,5 +1,8 @@
 name: Maven Build Artifact

+permissions:
+  contents: read
+
 on:
  pull_request:
    branches:
diff --git a/.github/workflows/deploy.yml b/.github/workflows/deploy.yml
@@ -9,9 +9,9 @@
 
 jobs:
   build-and-deploy:
-    uses: valitydev/java-workflow/.github/workflows/maven-service-deploy.yml@v3
+    uses: valitydev/java-workflow/.github/workflows/maven-service-deploy.yml@v4
     with:
       ignore-coverage: true
     secrets:
      github-token: ${{ secrets.GITHUB_TOKEN }}
      mm-webhook-url: ${{ secrets.MATTERMOST_WEBHOOK_URL }}