Set explicit Docker permissions (#997)

2024-01-19 00:29:29 -05:00 · 2024-01-19 00:29:29 -05:00 · 980e1f6d79
parent c8285cb5ef
commit 980e1f6d79
2 changed files with 5 additions and 0 deletions
--- a/.github/workflows/release.yml
+++ b/.github/workflows/release.yml
@ -100,6 +100,9 @@ jobs:
    with:
      plan: ${{ needs.plan.outputs.val }}
    secrets: inherit
+    permissions:
+      packages: write
+      contents: read

  # Build and package all the platform-agnostic(ish) things
  build-global-artifacts:
--- a/Cargo.toml
+++ b/Cargo.toml
@ -167,3 +167,5 @@ build-local-artifacts = false
 local-artifacts-jobs = ["./build-binaries", "./build-docker"]
 # Publish jobs to run in CI
 publish-jobs = ["./publish-pypi"]
+# For: `permissions: packages: write`.
+allow-dirty = ["ci"]