From 61478c09c000f560a16ff1e2c2ae2f5b31d46965 Mon Sep 17 00:00:00 2001
From: Cosmin Staicu <cosmin.staicu@uipath.com>
Date: Wed, 11 Mar 2026 20:50:50 +0200
Subject: [PATCH] fix: add missing id-token and actions permissions to CD
 workflow

The publish-package reusable workflow requires id-token: write for OIDC
PyPI auth and actions: write, but cd.yml only granted contents and
pull-requests read permissions.
---
 .github/workflows/cd.yml | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/.github/workflows/cd.yml b/.github/workflows/cd.yml
index 7c3a99dd9..b2ec6dc74 100644
--- a/.github/workflows/cd.yml
+++ b/.github/workflows/cd.yml
@@ -13,6 +13,8 @@ on:
 permissions:
   contents: read
   pull-requests: read
+  id-token: write
+  actions: write
 
 jobs:
   detect-publishable-packages: