From 065c524c4df2c04f30703631bda4b4c6631371c8 Mon Sep 17 00:00:00 2001
From: Mathieu Benoit <mathieu-benoit@hotmail.fr>
Date: Thu, 21 Nov 2024 10:08:45 -0500
Subject: [PATCH] Update release.yaml - openssf scorecard write permissions at
 the job level

Signed-off-by: Mathieu Benoit <mathieu-benoit@hotmail.fr>
---
 .github/workflows/release.yaml | 8 +++++---
 1 file changed, 5 insertions(+), 3 deletions(-)

diff --git a/.github/workflows/release.yaml b/.github/workflows/release.yaml
index b710496..e6c42eb 100644
--- a/.github/workflows/release.yaml
+++ b/.github/workflows/release.yaml
@@ -4,12 +4,14 @@ on:
     tags:
       - 0.**
 permissions:
-  id-token: write
-  packages: write
-  contents: write
+  contents: read
 jobs:
   release:
     runs-on: ubuntu-latest
+    permissions:
+      id-token: write
+      packages: write
+      contents: write
     steps:
       - name: Checkout
         uses: actions/checkout@v4