From bd6c270627f2ff2f0580648650141802c3974db3 Mon Sep 17 00:00:00 2001 From: Austin Valle Date: Wed, 22 Feb 2023 09:52:50 -0500 Subject: [PATCH] Update workflow to have write permissions for goreleaser creation of GH release (#100) * Update release.yml * switch to job level permission --- .github/workflows/release.yml | 4 +++- 1 file changed, 3 insertions(+), 1 deletion(-) diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml index 513d9634..308c462a 100644 --- a/.github/workflows/release.yml +++ b/.github/workflows/release.yml @@ -9,7 +9,7 @@ on: required: true permissions: - contents: read # Write operations use service account PAT + contents: read # Changelog commit operations use service account PAT env: CI_COMMIT_AUTHOR: hc-github-team-tf-provider-devex @@ -102,6 +102,8 @@ jobs: terraform-provider-release: name: 'Terraform Provider Release' needs: [ release-notes ] + permissions: + contents: write # Needed for goreleaser to create GitHub release uses: hashicorp/ghaction-terraform-provider-release/.github/workflows/hashicorp.yml@106e6d08159ccec423310cc2c706bae59f46c09c # v2.2.0 secrets: hc-releases-key-prod: '${{ secrets.HC_RELEASES_KEY_PROD }}'