From 5100ece9b81ff7b10c253acd0acffd27991a46bb Mon Sep 17 00:00:00 2001 From: patrick-chinchill Date: Mon, 6 Apr 2026 15:40:52 -0700 Subject: [PATCH] fix: add contents:read permission for checkout in private repo --- .github/workflows/publish.yml | 1 + .github/workflows/test-publish.yml | 1 + 2 files changed, 2 insertions(+) diff --git a/.github/workflows/publish.yml b/.github/workflows/publish.yml index ebabb3f..42b0572 100644 --- a/.github/workflows/publish.yml +++ b/.github/workflows/publish.yml @@ -9,6 +9,7 @@ jobs: runs-on: ubuntu-latest environment: pypi permissions: + contents: read # checkout private repo id-token: write # trusted publishing steps: - uses: actions/checkout@34e114876b0b11c390a56381ad16ebd13914f8d5 # v4.2.2 diff --git a/.github/workflows/test-publish.yml b/.github/workflows/test-publish.yml index 66c37e0..6275249 100644 --- a/.github/workflows/test-publish.yml +++ b/.github/workflows/test-publish.yml @@ -8,6 +8,7 @@ jobs: runs-on: ubuntu-latest environment: testpypi permissions: + contents: read # checkout private repo id-token: write # trusted publishing steps: - uses: actions/checkout@34e114876b0b11c390a56381ad16ebd13914f8d5 # v4.2.2