From 5dfed889c5f5cf7fc06e14ad8b3ba1edbe999c51 Mon Sep 17 00:00:00 2001
From: William Chu <william.chu@uptickhq.com>
Date: Wed, 19 Jun 2024 10:53:11 +1000
Subject: [PATCH] ci: add permissions

---
 .github/workflows/ci.yaml | 14 ++++++++------
 1 file changed, 8 insertions(+), 6 deletions(-)

diff --git a/.github/workflows/ci.yaml b/.github/workflows/ci.yaml
index 2623f47..9089612 100644
--- a/.github/workflows/ci.yaml
+++ b/.github/workflows/ci.yaml
@@ -2,17 +2,19 @@ name: CI
 on:
   push:
     branches:
-      - release/*
-      - develop
-      - master
-      - main
+    - release/*
+    - develop
+    - master
+    - main
   pull_request: {}
 
 permissions:
   id-token: write # Required for federated aws oidc
-  contents: read
   actions: read
-  pull-requests: write
+  contents: write # to be able to publish a GitHub release
+  issues: write # to be able to comment on released issues
+  pull-requests: write # to be able to comment on released pull requests
+
 
 jobs:
   ci: