Skip to content

Commit

Permalink
add id-token: write permissions for signing job
Browse files Browse the repository at this point in the history
  • Loading branch information
fohrloop committed Apr 9, 2024
1 parent a199024 commit 7b0a61a
Showing 1 changed file with 2 additions and 0 deletions.
2 changes: 2 additions & 0 deletions .github/workflows/publish-a-release.yml
Original file line number Diff line number Diff line change
Expand Up @@ -16,6 +16,8 @@ jobs:
name: Sign artifacts ✍️🔒
needs: build-and-test
runs-on: ubuntu-latest
permissions:
id-token: write # Required for OIDC. See: https://docs.github.com/en/actions/deployment/security-hardening-your-deployments/about-security-hardening-with-openid-connect#adding-permissions-settings
steps:
- uses: actions/download-artifact@v4
with:
Expand Down

0 comments on commit 7b0a61a

Please sign in to comment.