From a959dfafba3fb4dc6874e74f9b07fbd6580776f3 Mon Sep 17 00:00:00 2001 From: Conor Sloan Date: Sat, 10 Aug 2024 11:37:04 +0100 Subject: [PATCH] replace contents: write with attestations: write in release --- .github/workflows/release.yml | 14 ++++++++------ 1 file changed, 8 insertions(+), 6 deletions(-) diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml index de309c6..7e11d74 100644 --- a/.github/workflows/release.yml +++ b/.github/workflows/release.yml @@ -1,18 +1,20 @@ -name: 'release' -on: # rebuild any PRs and main branch changes +# Package and publish the action when a new release is created +# Since this is the publishing action itself, we can use the current checkout as the action +name: 'Publish Immutable Action Version' +on: release: types: [created] permissions: id-token: write - contents: write + attestations: write packages: write jobs: - package-and-publish: + package-and-publish: runs-on: ubuntu-latest steps: - - name: Checking out! + - name: Check out repository uses: actions/checkout@v4 - - name: Publish action package + - name: Publish Immutable Action Version uses: ./ with: github-token: ${{ secrets.GITHUB_TOKEN }}