Fix GitHub Actions release creation failures due to incorrect token reference

[Copilot]

The workflow was failing with HTTP 403 when creating releases because it referenced ${{ github.TOKEN }} instead of ${{ secrets.GITHUB_TOKEN }}.

Changes

• Token references: Updated deployRelease and deployTest jobs to use ${{ secrets.GITHUB_TOKEN }}
• Permissions: Added workflow-level contents: write permission required for release creation

permissions:
  contents: write

# In both deployment jobs:
env:
  GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}

Original prompt

Problem

The GitHub Actions workflow is failing with a 403 error when trying to create releases:

HTTP 403: Resource not accessible by integration (https://api.github.com/repos/Codeuctivity/SkiaSharp.Compare/releases)

This occurs in both the deployRelease and deployTest jobs when executing the gh release create command.

Root Cause

The workflow is using ${{ github.TOKEN }} (line 89 and 127 in .github/workflows/dotnet.yml) which doesn't have sufficient permissions to create releases. The correct token should be ${{ secrets.GITHUB_TOKEN }}.

Solution

Update the .github/workflows/dotnet.yml file to fix the token reference in both deployment jobs:

1. Line 89 in the deployRelease job - change from:

   GITHUB_TOKEN: ${{ github.TOKEN }}

   to:

   GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}

2. Line 127 in the deployTest job - change from:

   GITHUB_TOKEN: ${{ github.TOKEN }}

   to:

   GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}

Additionally, ensure the workflow has proper permissions by adding a permissions block to both jobs or at the workflow level to grant contents: write permission for creating releases.

Expected Outcome

After this change, the workflow will be able to successfully create GitHub releases using the properly scoped token.

Reference

• Failed job: https://github.com/Codeuctivity/SkiaSharp.Compare/actions/runs/20221072282/job/59565233480
• Commit ref: 2760187

This pull request was created from Copilot chat.

---

✨ Let Copilot coding agent set things up for you — coding agent works faster and does higher quality work when set up for your repo.

[Copilot]

Copilot wasn't able to review any files in this pull request.

---

💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.

[github-actions]

Thank you for your submission, we really appreciate it. Like many open-source projects, we ask that you sign our Contributor License Agreement before we can accept your contribution. You can sign the CLA by just posting a Pull Request Comment same as the below format.

---

I have read the CLA Document and I hereby sign the CLA

---

_{You can retrigger this bot by commenting recheck in this Pull Request. Posted by the CLA Assistant Lite bot.}