diff --git a/.github/workflows/main.yml b/.github/workflows/main.yml
index b34f68f..b68e23e 100644
--- a/.github/workflows/main.yml
+++ b/.github/workflows/main.yml
@@ -7,6 +7,7 @@ on:
 
 jobs:
   zap_scan:
+    permissions: write-all
     runs-on: ubuntu-latest
     name: OWASP ZAP Baseline Scan of OWASP Juice Shop
     steps:
@@ -17,4 +18,5 @@ jobs:
         uses: zaproxy/action-baseline@v0.12.0
         with:
           target: "https://juice-shop.herokuapp.com/#"
-          artifact_name: "zap_report.html"
\ No newline at end of file
+          artifact_name: "zap_report.html"
+          
\ No newline at end of file