diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml index cf8f414..017f4a0 100644 --- a/.github/workflows/release.yml +++ b/.github/workflows/release.yml @@ -3,12 +3,6 @@ on: branches: - main workflow_dispatch: - -permissions: - contents: write - packages: write - pull-requests: write - issues: write name: Release jobs: @@ -31,9 +25,15 @@ jobs: run: yarn install --frozen-lockfile - name: Build run: yarn build + - name: Request GitHub token + id: get_workflow_token + uses: peter-murray/workflow-application-token-action@v2.1.0 + with: + application_id: ${{ secrets.APP_ID }} + application_private_key: ${{ secrets.APPLICATION_PRIVATE_KEY }} - name: Release env: - GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }} + GITHUB_TOKEN: ${{ steps.get_workflow_token.outputs.token }} NPM_TOKEN: ${{ secrets.NPMJS_ACCESS_TOKEN }} NODE_AUTH_TOKEN: ${{ secrets.NPMJS_ACCESS_TOKEN }} run: yarn release