From d7476c7f490fdb68275556ebcd7c23a320bb4817 Mon Sep 17 00:00:00 2001 From: Strobel Pierre Date: Wed, 13 May 2026 15:37:05 +0200 Subject: [PATCH] ci: grant actions:write to release job so it can trigger appstore-publish The v1.1.1 release run failed on the final "Trigger App Store publish" step because the default GITHUB_TOKEN only carries read-level permission on actions, while `gh workflow run` requires actions:write. The signing workflow had to be triggered manually from a local gh CLI to complete the release. Adding the permission scopes the token correctly so future releases chain through without manual intervention. --- .github/workflows/release.yml | 1 + 1 file changed, 1 insertion(+) diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml index 6127423..31c6130 100644 --- a/.github/workflows/release.yml +++ b/.github/workflows/release.yml @@ -22,6 +22,7 @@ jobs: runs-on: ubuntu-latest permissions: contents: write + actions: write # required to trigger appstore-build-publish.yml from the final step steps: - uses: actions/checkout@v4 with: