Skip to content

Commit

Permalink
Add id-token:write permissions to CD workflow.
Browse files Browse the repository at this point in the history
  • Loading branch information
dajiaji committed Oct 6, 2024
1 parent a1d19ab commit 256e9c0
Showing 1 changed file with 28 additions and 0 deletions.
28 changes: 28 additions & 0 deletions .github/workflows/publish.yml
Original file line number Diff line number Diff line change
Expand Up @@ -7,6 +7,9 @@ on:
jobs:
publish:
runs-on: ubuntu-latest
permissions:
contents: read
id-token: write
steps:
- uses: actions/checkout@v4
- uses: denoland/setup-deno@v1
Expand All @@ -20,6 +23,9 @@ jobs:

publish-common:
runs-on: ubuntu-latest
permissions:
contents: read
id-token: write
steps:
- uses: actions/checkout@v4
- uses: actions/setup-node@v4
Expand All @@ -42,6 +48,10 @@ jobs:

publish-core:
runs-on: ubuntu-latest
permissions:
contents: read
id-token: write
needs: publish-common
steps:
- uses: actions/checkout@v4
- uses: actions/setup-node@v4
Expand All @@ -64,6 +74,9 @@ jobs:

publish-chacha20poly1305:
runs-on: ubuntu-latest
permissions:
contents: read
id-token: write
needs: publish-core
steps:
- uses: actions/checkout@v4
Expand All @@ -87,6 +100,9 @@ jobs:

publish-dhkem-x25519:
runs-on: ubuntu-latest
permissions:
contents: read
id-token: write
needs: publish-core
steps:
- uses: actions/checkout@v4
Expand All @@ -110,6 +126,9 @@ jobs:

publish-dhkem-x448:
runs-on: ubuntu-latest
permissions:
contents: read
id-token: write
needs: publish-core
steps:
- uses: actions/checkout@v4
Expand All @@ -133,6 +152,9 @@ jobs:

publish-hybridkem-x25519-kyber768:
runs-on: ubuntu-latest
permissions:
contents: read
id-token: write
needs: publish-dhkem-x25519
steps:
- uses: actions/checkout@v4
Expand All @@ -156,6 +178,9 @@ jobs:

publish-dhkem-secp256k1:
runs-on: ubuntu-latest
permissions:
contents: read
id-token: write
needs: publish-dhkem-x25519
steps:
- uses: actions/checkout@v4
Expand All @@ -179,6 +204,9 @@ jobs:

publish-hpke-js:
runs-on: ubuntu-latest
permissions:
contents: read
id-token: write
needs: [publish-chacha20poly1305, publish-dhkem-x25519, publish-dhkem-x448]
steps:
- uses: actions/checkout@v4
Expand Down

0 comments on commit 256e9c0

Please sign in to comment.