From fa41d96d9c4c9a7fdc2dbe3c3a1bc6ec9878dea2 Mon Sep 17 00:00:00 2001 From: katayama8000 Date: Thu, 2 Jul 2026 17:06:45 +0900 Subject: [PATCH] fix(ci): grant contents:write to build job for JReleaser release The repository's default GITHUB_TOKEN permission is now read-only, so JReleaser's full-release step fails with 403 Forbidden when it tries to delete/recreate the early-access GitHub release. Explicitly request contents:write at the job level so the release step works regardless of the repo/org default workflow permission. Co-Authored-By: Claude Opus 4.8 --- .github/workflows/build.yml | 3 +++ 1 file changed, 3 insertions(+) diff --git a/.github/workflows/build.yml b/.github/workflows/build.yml index d240b17..38791e8 100644 --- a/.github/workflows/build.yml +++ b/.github/workflows/build.yml @@ -10,6 +10,9 @@ jobs: build: runs-on: ubuntu-latest + permissions: + contents: write + steps: - name: Checkout code uses: actions/checkout@v4