From 6976bc3f6e9be914be2f9761cd0b175dcf4d66ac Mon Sep 17 00:00:00 2001
From: "K.B.Dharun Krishna" <kbdharunkrishna@gmail.com>
Date: Tue, 5 Nov 2024 10:24:39 +0530
Subject: [PATCH] next: add id-token perm for provenance

Signed-off-by: K.B.Dharun Krishna <kbdharunkrishna@gmail.com>
---
 .github/workflows/npm-publish.yml        | 1 +
 .github/workflows/unreleased-publish.yml | 5 +++++
 2 files changed, 6 insertions(+)

diff --git a/.github/workflows/npm-publish.yml b/.github/workflows/npm-publish.yml
index 5bb641f..434602e 100644
--- a/.github/workflows/npm-publish.yml
+++ b/.github/workflows/npm-publish.yml
@@ -9,6 +9,7 @@ on:
 permissions:
   actions: write
   contents: read
+  id-token: write
 
 env:
   GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
diff --git a/.github/workflows/unreleased-publish.yml b/.github/workflows/unreleased-publish.yml
index 0c19d8b..154cadc 100644
--- a/.github/workflows/unreleased-publish.yml
+++ b/.github/workflows/unreleased-publish.yml
@@ -6,6 +6,11 @@ on:
       - main
   workflow_dispatch:
 
+permissions:
+  actions: write
+  contents: read
+  id-token: write
+
 env:
   GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}