Remove write permission

Author: adpi2

.github/workflows/test.yml

@@ -1,3 +1,4 @@
+name: Test Action
 on:
   push:
     branches:
@@ -8,7 +9,7 @@ on:
 
 jobs:
   test:
-    name: Test on ${{ matrix.os }}
+    name: On ${{ matrix.os }}
     runs-on: ${{ matrix.os }}
     env:
       GITHUB_TOKEN: ${{ github.token }}

README.md

@@ -2,14 +2,15 @@
 
 !!! WARNING: THIS IS A WORK IN PROGRESS 
 
-A Github action to submit the dependency graphs of an sbt build to the Github Dependency Graph API.
+A Github action to submit the dependency graphs of an [sbt](https://www.scala-sbt.org/) build to the Github Dependency Graph API.
 
 After the Github Action workflow has been successfully run, the graph of the sbt build is visible in the [Dependency Graph](https://docs.github.com/en/code-security/supply-chain-security/understanding-your-software-supply-chain/exploring-the-dependencies-of-a-repository) page of the Insights tab.
 
+Enable [Dependabot](https://docs.github.com/en/code-security/supply-chain-security/understanding-your-software-supply-chain/about-supply-chain-security#what-is-dependabot) in your project settings to receive alerts for vulnerabilities that affec your sbt project.
+
 ## Support
 
-- It supports any sbt project with sbt version equal to or greater than 1.3.
-- It can only run on the default branch of a project.
+Any sbt project whose sbt version is equal to or greater than 1.3.
 
 ## Usage
 
@@ -24,11 +25,9 @@ on:
 jobs:
   submit-graph:
     name: Submit Dependency Graph
-    runs-on: ubuntu-latest
+    runs-on: ubuntu-latest # or windows-latest, or macOS-latest
     env:
       GITHUB_TOKEN: ${{ github.token }}
-    permissions:
-      contents: write
     steps:
       - uses: actions/checkout@v3
       - uses: scalacenter/sbt-dependency-graph-action@v1