github
diff --git a/‎lib/feature-flags.js‎
Lines changed: 14 additions & 5 deletions b/‎lib/feature-flags.js‎
Lines changed: 14 additions & 5 deletions
diff --git a/‎lib/feature-flags.js.map‎
Lines changed: 1 addition & 1 deletion b/‎lib/feature-flags.js.map‎
Lines changed: 1 addition & 1 deletion
diff --git a/‎lib/init-action.js‎
Lines changed: 1 addition & 1 deletion b/‎lib/init-action.js‎
Lines changed: 1 addition & 1 deletion
diff --git a/‎lib/init-action.js.map‎
Lines changed: 1 addition & 1 deletion b/‎lib/init-action.js.map‎
Lines changed: 1 addition & 1 deletion
diff --git a/‎src/feature-flags.ts‎
Lines changed: 19 additions & 7 deletions b/‎src/feature-flags.ts‎
Lines changed: 19 additions & 7 deletions
diff --git a/‎src/init-action.ts‎
Lines changed: 2 additions & 1 deletion b/‎src/init-action.ts‎
Lines changed: 2 additions & 1 deletion
@@ -66,13 +66,25 @@ export class GitHubFeatureFlags implements FeatureFlags {
         );
         return response.data;
       } catch (e) {
-        // Some feature flags, such as `ml_powered_queries_enabled` affect the produced alerts.
-        // Considering these feature flags disabled in the event of a transient error could
-        // therefore lead to alert churn. As a result, we crash if we cannot determine the value of
-        // the feature flags.
-        throw new Error(
-          `Encountered an error while trying to load feature flags: ${e}`
-        );
+        if (
+          e instanceof Error &&
+          e.message.includes("Resource not accessible by integration")
+        ) {
+          throw new Error(
+            `Resource not accessible by integration. This usually means that your ` +
+              `workflow is missing the required security-events write permissions. ` +
+              `See https://docs.github.com/en/actions/using-workflows/workflow-syntax-for-github-actions#permissions ` +
+              `for more information.`
+          );
+        } else {
+          // Some feature flags, such as `ml_powered_queries_enabled` affect the produced alerts.
+          // Considering these feature flags disabled in the event of a transient error could
+          // therefore lead to alert churn. As a result, we crash if we cannot determine the value of
+          // the feature flags.
+          throw new Error(
+            `Encountered an error while trying to load feature flags: ${e}`
+          );
+        }
       }
     };
 
 
@@ -143,9 +143,10 @@ async function run() {
     repositoryNwo,
     logger
   );
-  void featureFlags.preloadFeatureFlags();
 
   try {
+    await featureFlags.preloadFeatureFlags();
+
     const workflowErrors = await validateWorkflow();
 
     if (