From 3f9caeca34ce058a9ed75eba49b76bb7ae3a286a Mon Sep 17 00:00:00 2001 From: Brett Date: Thu, 14 Dec 2023 16:10:39 +1100 Subject: [PATCH] ci: update workflow permissions --- .github/workflows/release-on-push-to-mainline.yml | 5 +++++ 1 file changed, 5 insertions(+) diff --git a/.github/workflows/release-on-push-to-mainline.yml b/.github/workflows/release-on-push-to-mainline.yml index 69f2e33f..d59f8a5b 100644 --- a/.github/workflows/release-on-push-to-mainline.yml +++ b/.github/workflows/release-on-push-to-mainline.yml @@ -7,6 +7,11 @@ on: jobs: build: + permissions: + contents: write # to be able to publish a GitHub release + issues: write # to be able to comment on released issues + pull-requests: write # to be able to comment on released pull requests + id-token: write # to enable use of OIDC for npm provenance runs-on: ubuntu-latest strategy: matrix: