Skip to content

workflows/release-tasks: Add missing permissions for release binaries #102023

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 1 commit into from
Aug 5, 2024
Merged

workflows/release-tasks: Add missing permissions for release binaries #102023

merged 1 commit into from
Aug 5, 2024

Conversation

@tstellar
Copy link
Collaborator

@tstellar tstellar commented Aug 5, 2024

Now that the release binaries create artifact attestations, we need to ensure that we call the workflow with the correct permissions.

@tstellar
workflows/release-tasks: Add missing permissions for release binaires
633f982 
Now that the release binaries create artifact attestations, we need
to ensure that that workflow has the correct permissions.
@tstellar tstellar requested a review from tru August 5, 2024 17:28
@tstellar
Copy link
Collaborator Author

tstellar commented Aug 5, 2024

Should fix the error here: https://github.com/llvm/llvm-project/actions/runs/10245582366

@llvmbot
Copy link
Member

llvmbot commented Aug 5, 2024

@llvm/pr-subscribers-github-workflow

Author: Tom Stellard (tstellar)

Changes

Now that the release binaries create artifact attestations, we need to ensure that we call the workflow with the correct permissions.

Full diff: https://github.com/llvm/llvm-project/pull/102023.diff

1 Files Affected:

  • (modified) .github/workflows/release-tasks.yml (+2)
diff --git a/.github/workflows/release-tasks.yml b/.github/workflows/release-tasks.yml
index 7dd4c306671b7..b7fea0785fed2 100644
--- a/.github/workflows/release-tasks.yml
+++ b/.github/workflows/release-tasks.yml
@@ -78,6 +78,8 @@ jobs:
     name: Build Release Binaries
     permissions:
       contents: write
+      id-token: write
+      attestations: write
     needs:
       - validate-tag
       - release-create

@tstellar tstellar changed the title workflows/release-tasks: Add missing permissions for release binaires workflows/release-tasks: Add missing permissions for release binaries Aug 5, 2024
@tstellar tstellar merged commit dc349a3 into llvm:main Aug 5, 2024
@tstellar tstellar added this to the LLVM 19.X Release milestone Aug 5, 2024
@tstellar
Copy link
Collaborator Author

tstellar commented Aug 5, 2024

/cherry-pick dc349a3

llvmbot pushed a commit to llvmbot/llvm-project that referenced this pull request Aug 5, 2024
@tstellar @llvmbot
workflows/release-tasks: Add missing permissions for release binaries (
c56ad88 
…llvm#102023)

Now that the release binaries create artifact attestations, we need to
ensure that we call the workflow with the correct permissions.

(cherry picked from commit dc349a3)
@llvmbot
Copy link
Member

llvmbot commented Aug 5, 2024

/pull-request #102057

tru pushed a commit to llvmbot/llvm-project that referenced this pull request Aug 10, 2024
@tstellar @tru
workflows/release-tasks: Add missing permissions for release binaries (
e1c32a8 
…llvm#102023)

Now that the release binaries create artifact attestations, we need to
ensure that we call the workflow with the correct permissions.

(cherry picked from commit dc349a3)
@mgabka mgabka mentioned this pull request Aug 22, 2024
Open
@thewtex thewtex mentioned this pull request Feb 10, 2025
Closed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@tru tru tru approved these changes

Assignees

No one assigned

Labels

github:workflow

Projects

LLVM Release Status
Status: Done

Milestone

LLVM 19.X Release

Development

Successfully merging this pull request may close these issues.

3 participants

@tstellar @llvmbot @tru